Description:
At the
GOVCERT.NL Security Conference 2008 in the Netherlands, David Rice (The Monterey Group) gave this talk based on his book 'Geekonomics'.
Abstract:
Economic, legal, and regulatory incentives in the software market are missing, distorted, or perverted. This allows software manufacturers to continuously "dump" vast quantities of vulnerabilities into the global stream of commerce, with little consequence to them and with great consequence to everyone else. The money expended on cyber security is, in part, to deal with the effects of insecure software, not to prevent insecure software in the first place. This simply is not sustainable. It should be more expensive (and more difficult) for attackers to discover vulnerabilities than for software buyers to protect against an unrelenting deluge of vulnerabilities. Because of software's pervasiveness, "bad" software is no longer a technical issue, but public policy issue. In this talk David Rice discusses possible incentives for creating sustainable cyber security for the global community.
Tags: David Rice, Geekonomics, Economic incentives, govcert.nl
More information at govcertsymposium.com. Thanks go out to Andrew Vandecamp (macdude [] xs4all [] nl) for referring this video to us.
Tags: fun ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Comments: