Tag Archives: Cigital

Application Security: Focus on flaws, not on bugs


September 3, 2013 By
Derek Weeks

I recently listened to Gary McGraw’s interview on the Trusted Software Alliance Website. One thing he said (among many) that captured my attention was work that Cigital is doing on architecture risk analysis. Gary noted that security defects can be the result of bugs or flaws. “We pay more attention to (application) bugs and we need […]

Continue reading...