Monthly Archives: January 2011

Security Awareness and Embedded Software

In a recent interview with Iván Arce of Core Security Technologies by Gary McGraw of Cigital, Arce made the point that embedded systems are becoming a security issue. At about the same time, US Army General Keith B. Alexander, director … Continue reading

Posted in Uncategorized | Comments Off

How error messages can backfire

Error messages should provide enough information for the user to correct their error, but they shouldn’t provide any more than that, or malicious users could abuse them – as shown recently with the ASP.NET server.

Posted in Software Engineering | Comments Off