Comments on: Software, the New Insider Threat http://www.cigital.com/justiceleague/2007/08/16/software-the-new-insider-threat/ The Cigital Software Security and Quality Blog Fri, 16 May 2008 03:49:20 +0000 http://wordpress.org/?v=2.0.11 by: gem http://www.cigital.com/justiceleague/2007/08/16/software-the-new-insider-threat/#comment-2088 Fri, 17 Aug 2007 13:00:00 +0000 http://www.cigital.com/justiceleague/2007/08/16/software-the-new-insider-threat/#comment-2088 As is many times the case, there are two threads of responses going on this idea (neither of them here on the blog). The first thread is on sc-l (for info on sc-l which all of us at cigital highly recommend, see http://securecoding.org/list/) and another thread has developed on darkreading. The gist of the two threads focuses on how to define an "insider" and the complexity of modern trust models. gem As is many times the case, there are two threads of responses going on this idea (neither of them here on the blog). The first thread is on sc-l (for info on sc-l which all of us at cigital highly recommend, see http://securecoding.org/list/) and another thread has developed on darkreading.

The gist of the two threads focuses on how to define an “insider” and the complexity of modern trust models.

gem

]]>