When Security Researchers Become the Problem

August 4, 2005

Posted in: Technical Track

Tags: DBA Lounge, Group Blog Posts, Oracle

Oracle Chief Security Officer Mary Ann Davidson writes about the myths and misunderstandings surrounding security and how security researchers can actually become the problem. Davidson admits that “the vendor community needs to improve the quality of commercial software so we have far fewer vulnerabilities” and thanks “those researchers who are genuinely motivated by the public good, most of whom never get the headlines of their more notorious brethren,” but sees issues with where security research has been heading.

The three misguided notions Davidson focuses on are that fixes can be done in a matter of days, that researchers increase their business by finding more bugs, and that researchers deserve credit for every bug they find.

Paul Vallee

Want to talk with an expert? Schedule a call with our team to get the conversation started.

About the Author

Paul Vallee

As Pythian’s Chief Executive Officer, Paul leads this center of excellence for expert, outsourced technical services for companies whose systems are directly tied to revenue growth and business success. His passion and foresight for using data and technology to drive business success has helped Pythian become a high-growth global company with over 400 employees and offices in North America, Europe, and Asia. Paul, who started his career as a data scientist, founded Pythian when he was 25 years old. In addition to driving the business, Paul is a vocal proponent of diversity in the workplace, human rights, and economic empowerment. He supports his commitment through Pythian’s hiring and retention practices, his role as board member for the Basic Income Canada Network, and as a supporter of women in technology.

Snowflake

SAP

Snowflake

SAP

Fixed Utility Menu