Federal agencies tackle software security

Wednesday, 24 September 2003, 9:35 AM EST

The Department of Energy on Tuesday will show off a "model contract" it signed "that demonstrates a new way for government to purchase software with security built in, enabling and requiring vendors to take more responsibility for both delivering less vulnerable systems and keeping them that way," according to a press release from the Center for Internet Security (CIS).

CIS, a nonprofit in Hershey, Penn., that advises members on computer security, is assisting the government in its quest for intruder-proof software. The center is organizing Tuesday's meeting at the JW Marriott Hotel in Washington, D.C.

The government effort could lead to improvements in computer security for all consumers of information technology, said Alan Paller, research director at the SANS (SysAdmin, Audit, Network, Security) Institute. "The government is going to use its procurement power to change the way vendors deliver their software," he said.

[ Read more ]




Spotlight

Android Fake ID bug allows malware to impersonate trusted apps

Posted on 29 July 2014.  |  Bluebox Security researchers unearthed a critical Android vulnerability which can be used by malicious applications to impersonate specially recognized trusted apps - and get all the privileges they have - without the user being none the wiser.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Tue, Jul 29th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //