6. Implementation Security
Eventually, system designs give way to actual implementations: real code running on real hardware that, in theory, realizes the design and turns it from collection of ideas into a real piece of software. This transformation has long been a source of security problems. Some blame these blunders on programmers, as they are the ones who carry out the transformation. Others blame their tools: the long and rapidly changing list of languages, environments, and technologies that programmers use to carry out their craft. Others blame the broader economic and engineering processes by which modern software is made.
So, which perspective is right? We believe the answer is yes; all these perspectives are valid to an extent, (and ...
Get The Craft of System Security now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
