« Java Open Review Project | Main | So what do Computer Hardware, Storage Systems, and Security Software have in common? »

The Problem is Complexity


Marcus Ranum just wrote a piece about Fortify, code review, and why gritting your teeth and trying really hard just isn't going to make your code secure. Read it.

Among other things, the article pretty well qualifies as a Fortify SCA product review. We've had product reviews before, but this one is different because Marcus is not just a software guy, he's a software security guy. He's the first reviewer who really honestly knows how to wield a code review tool and figure out whether or not it does something useful. Since his feedback is mostly positive, I'm going to take this moment to be proud of what we've built. (Insert proud moment here.) Thanks Marcus!

Posted by Brian Chess on January 4, 2007 1:01 AM |

Presented By

House Rules

This blog is a place for discussion and feedback, both positive and negative. If you post here, you are agreeing to the following Participation Policy...more

Meet the Bloggers

Recent Posts

About

This page contains a single entry from the blog posted on January 4, 2007 1:01 AM.

The previous post in this blog was Java Open Review Project.

The next post in this blog is So what do Computer Hardware, Storage Systems, and Security Software have in common?.

Many more can be found on the main index page or by looking through the archives.

Powered by
Movable Type 3.34