Michael Howard and Steve Lipner send me a copy of their new book The Security Development Lifecycle. The book’s CD includes a six-part security class video. Vulnerabilities in code are not “security threats” — they are vulnerabilities. Microsoft India hosted a Security Shootout last March, and I wonder if the US will host a similar event in the U.S. Michael Howard has another security book through Osborne called Designing Security Software arriving in February — push that publication date far enough away.”]
Source: https://taosecurity.blogspot.com/2006/08/preview-security-development-lifecycle.html