Jump to content

Open security

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Dwheeler (talk | contribs) at 19:56, 28 August 2013 (Fix formatting). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Open security is an initiative to approach application security challenges using open source philosophies and methodologies.[1] Traditional application security is based on the premise that any application or service (whether it is malware or desirable) relies on security through obscurity.[2]

On the developer side, legitimate software and service providers can have independent verification and testing of their source code.[3] On the information technology side, companies can aggregate common threats, patterns, and security solutions to a variety of security issues.[4][5]

See also

References

  1. ^ "Open Security". Retrieved 2013-08-28.
  2. ^ Raymond, Eric S (2004-05-17). "If Cisco ignored Kerckhoffs's Law, users will pay the price". LWN.net. Retrieved 2011-06-21.
  3. ^ "Open Security Foundation". Open Security Foundation. Retrieved 2011-06-21.
  4. ^ "Open Web Application Security Project". Retrieved 2011-06-21.
  5. ^ "Why have OSA?". OSA. Retrieved 2011-06-21.
Retrieved from "https://en.wikipedia.org/w/index.php?title=Open_security&oldid=570575555"