I am attaching here two papers by two leading software security researchers to minimize software vulnerabilities or their exploitation by attackers Two of the three ideas proposed by these papers advocate the use of law/regulations to minimize software vulnerabilities. Dorothy Denning puts forward two ideas: (1) Use of a vulnerability bounty program that rewards vulnerability discoverers, and (2) Holding software developers legally responsible (liable) for their faulty programs. Carl Landwehr proposes code governing software code.
For this conference, your task is to take one of these three ideas and discuss its pros and cons. Two quality posts are required from every one for a passing grade. Avoid duplications.
For this conference, your task is to take one of these three ideas and discuss its pros and cons. Two quality posts are required from every one for a passing grade. Avoid duplications.
-
Landwehr.pdf -
DDenning.pdf
