“Building security in” has long been a goal for secure software systems. The question is: is this concept still relevant? This post argues that it is obsolete. Since innovation built on software is cutting across all industries, it is important to get this right. In security, the idea has been to build security in, as opposed to bolting it on. The FTC tells us to do the same thing with privacy. The most recent NIST publication on systems security describes security as an emergent property of a system.”]
Source: https://www.csoonline.com/article/3190001/secure-systems-and-the-three-little-pigs.html