[Dailydave] Try 2: The Joining (or "Why metrics are important")
dave
dave at immunityinc.com
Fri May 1 13:08:26 EDT 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Interesting briefs are linked here:
http://outerdnn.outer.jhuapl.edu/rethinking/VideoArchives/tabid/94/Default.aspx
For example, this one is good, especially slides 11,23.
ftp://ftp.jhuapl.edu/nsadrethink/030409/goslerbrief.pdf
One thing I notice as missing from all these types of presentations is
that although they say "Join defence and office" they rarely explain
what it would take to do that. In order to truly join defence and
offence you need a single metric that can take newly discovered
vulnerabilities from all parts of your organization, and tell you when
to go to a vendor with it or go public with it, or use it offensively,
or use it on only targeted offensive missions. Without that metric there
is no joining of teams on this sort of thing. You are forever split down
the middle, which is bad for both offence and defence.
Dave Aitel
Chief Metrician
Immunity, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkn7LIoACgkQtehAhL0gherZVACfZUlvFN196DKOjUTB4HNMB+Qd
EwUAn3P18Z/w9j+OYA8hiE928Fn1tBzy
=768h
-----END PGP SIGNATURE-----
More information about the Dailydave
mailing list