Episode 7: Gary McGraw on Security
OOPSLA 2007
English - August 20, 2007 00:00 - 10.4 MB - ★★★★ - 1 ratingTechnology News Tech News object-oriented programming languages systems applications software engineering development architecture middleware technology Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Guest: Gary McGraw
Host: Michael Kircher
Software security is an issue that everyone faces but that
not everyone gets right. Sometimes, our languages programming
claim to provide us a level of security that they cannot deliver.
Fortunately, folks like Gary McGraw, the CTO of Cigital, have
studied software, language technology, and security. McGraw
defines software security as "how to approach computer security
if you are a software developer or architect". In his experience,
the best way to build secure software is to have the people who
build our systems think carefully about security while they are
building them. Security is part of both the system's architecture
and its implementation.
At ooPSLA, McGraw -- a globally-recognized
authority on software security and the author of six best selling
books on this topic -- is teaching a tutorial called
Software Security: Building Security In
that will present a detailed approach to getting past theory and
putting software security into practice. The tutorial will give
a lesson in applied risk management and then present a number of
software security best practices.
Listen to this podcast to hear Michael Kircher of SE Radio chat
with Gary about software security, patterns of attack on software,
and some of the most timely issues in security as applied to
on-line games.