Sunday, March 16, 2008
Do Sun, CA, IBM and Oracle really care about security?
In order to understand their weakness, you have to first understand who is strong. Consider Microsoft for a minute. Have you noticed that they hold more events after hours for IT professionals in the local community than Sun, CA, IBM and Oracle combined? Have you noticed that their presenters are doing thinly veiled chock-a-block eye candy Powerpoint presentations and will frequently do things such as showing working software? Have you ever noticed that even if you attend a Microsoft event but don't actually have an interest in their technology that you will learn something?
Many folks know that I am a chapter lead for The Open Web Application Security Project (OWASP) which is a worldwide free and open community focused on improving the security of application software. I can factually tell you that there were Microsoft employees in our last chapter meeting but employees from the other firms were missing in action.
The next time one of your software vendors stands in front of IT executives talking about how security is important to us, ask them whether they participate in OWASP and watch the facial expression analogous to deer in the headlights...
Links to this post: