Search found 3 matches

by andyl
Tue Jul 06, 2010 6:30 am
Forum: News and Releases
Topic: Countermeasures
Replies: 10
Views: 20741

Re: Countermeasures

It seems to me that to be useful, you need to satisfy two security goals: 1. You need to have a secure system, so people can't hack in and insert Trojans into your software. 2. You need to provide enough evidence to prospective users of your software that 1 is true that they feel secure using your s...
by andyl
Mon Jul 05, 2010 5:06 am
Forum: News and Releases
Topic: Countermeasures
Replies: 10
Views: 20741

Re: Countermeasures

Nothing says you must release details of how it was done, But just as I trust open source software more than I trust closed source, I'd have greater trust that the security hole was patched if you said "this was the security hole, and this is what we've done to patch it". And for the same ...
by andyl
Mon Jul 05, 2010 3:25 am
Forum: News and Releases
Topic: Countermeasures
Replies: 10
Views: 20741

Re: Countermeasures

It seems to me that there is an important step missing from your countermeasures, namely finding out how this was done and ensuring that exactly the same thing isn't done again. Presumably it isn't your intent to set things up so that anyone in the world can change the contents of the tar file you p...