See your link here
Oracle, vis-a-vis Mary Ann Davidson, attacks poor coding practices
3 comments- IT TOPICS:Security
As a rule, I have not been a fan of Oracle. I know, I know, they make great database software, but they kind of remind me of Microsoft. They want to dominate the database and ERP/CRM world in the same way Microsoft wants to dominate the desktop and server world and anything related to it. They also want you to pay mightily for their domination.
But this article, about Mary Ann Davidson, the chief security officer, made me have kind thoughts about Oracle. She is stated as having said that when Oracle hires programmers they often need "remedial coding education after they are hired". She says that the Universities are just not turning out secure programming coders.
She is also reported as saying that the record for fixing one defect was 78 patches, which cost the company around $1 million dollars. Not to mention, that according to NIST (National Institute of Standards and Technology) estimates "computer security problems cost between $22.2 billion to $59.5 billion per year".
I like this lady! Oracle has developed their own in house coding standards and they use their "own dumb-ass mistakes as examples". This is a beautiful thing. It sounds to me like Oracle, vis-a-vis Mary Ann Davidson, is taking the bull by the horns.
Print
Email this
Digg this
