Gary McGraw on secure software development |
 |
By Dennis Fisher, Executive Editor
06 Jun 2008 | SearchSecurity.com |
|
|
For Gary McGraw, the chief technology officer of Cigital Inc., software security is not just an item to check off on a list. It is a personal crusade, an effort to educate developers, QA testers, senior management and anyone else with authority over a software project about the value of implementing secure software development practices and the effect they can have on a company's bottom line down the road. In this interview with Executive Editor Dennis Fisher, McGraw discusses the progress the industry is making on software security and how much farther most vendors have to go.
| McGraw on secure software development (12 min) | |
- Let's talk about where things stand with the state of software security in the industry today. Are you optimistic? (0:17)
- I've heard a lot of people say that solving the software security problem is going to cost a lot of time and money in the development process. Is that true? (2:22)
- I know there's a lot of training that goes on in the professional world in terms of software security for developers, but is that happening more in colleges and universities right now compared to five years ago? (4:11)
- What about the commercial software vendors. How much progress are they making on this problem? (6:57)
- Are there one or two problems that really worry you in software security right now? (9:46)
|
|
|
|
