Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×
Government

Submission + - NSA Says Its Secure Dev Methods Are Known Now (threatpost.com)

Trailrunner7 writes: Despite its reputation for secrecy and technical expertise, the National Security Agency doesn't have a set of secret coding practices or testing methods that magically make their applications and systems bulletproof. In fact, one of the agency's top technical experts said that virtually all of the methods the NSA uses for development and information assurance are publicly known.

"Most of what we do in terms of app development and assurance is in the open literature now. Those things are known publicly now," Neil Ziring, technical director of the NSA's Information Assurance Directorate, said in his keynote at the OWASP AppSec conference in Washington Wednesday. "It used to be that we had some methods and practices that weren't well-known, but over time that's changed as industry has focused more on application security."

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

NSA Says Its Secure Dev Methods Are Known Now

Comments Filter:

Top Ten Things Overheard At The ANSI C Draft Committee Meetings: (5) All right, who's the wiseguy who stuck this trigraph stuff in here?

Working...