Alexander Kornbrust Oracle Security Blog » Print » Mary Ann Davidson: Applications will have to defend themselves from attacks

Mary Ann Davidson: Applications will have to defend themselves from attacks

Dieser Eintrag stammt von Alexander Kornbrust Am 29 Mai 2007 @ 16:15 In Oracle Security | Keine Kommentare

[1] Mary Ann Davidson gave one of their famous talks on the[2] AusCERT 2007. (”Every [3] Marine fights… which means they know how to defend themselves”).

According to Mary Ann Davidson (Oracle CSO), applications will have to defend themselves from attack in the future.

How can a software defend from attacks? Every Marine has a weapon ([4] M16) so probably attacking attackers is the best approach. This means we need also weapons for the database… After 3 invalid login attempts Oracle could ban the IP or start a denial of service (d.o.s.) attack against the bad ip address/address range. This could be a nice talk for one of the next security conferences.
I think this is the wrong approach. I agree with Mary Ann that developers (even Oracle developers) should develop good and secure code.

Dieser Artikel wurde ausgedruckt ab Alexander Kornbrust Oracle Security Blog: http://blog.red-database-security.com

URL zum Artikel: http://blog.red-database-security.com/2007/05/29/mary-ann-davidson-applications-will-have-to-defend-themselves-from-attacks/

URLs in this post:
[1] Mary Ann Davidson: http://www.oracle.com/corporate/pressroom/html/pressportal/mdavidson.html
[2] AusCERT 2007: http://www.zdnetasia.com/news/security/0,39044215,62016513,00.htm
[3] Marine: http://en.wikipedia.org/wiki/Us_Marine
[4] M16: http://en.wikipedia.org/wiki/M16_rifle

Klicken hier zum Drucken.