Main | Learning from the Real World »

March 10, 2009

Developing Security

This is my inaugural post in the security Blogosphere and what better place to start than with who am I and why I'm here...

Over the past six years I have been working on information security software. My first project was on an automated certificate renewal system for Entrust. My current project, being developed for my employer Third Brigade, is an enterprise-class server and application protection system called Third Brigade Deep Security. It's a combination host-based Firewall, Deep Packet Inspection, Log Inspection, and Integrity Monitoring system. My role specifically is as the Software Architect for our Manager component, which is responsible for configuring and monitoring thousands of software agents.

To that end, you will likely find posts on this blog relating to secure development, usability, visualization, metrics, virtualization, and the security technologies I mentioned. What you're not likely to see are postings about the latest exploits, compliance, or risk management. These topics are well-covered by many of the existing security blogs.

That brings me to the question: why am I starting a blog? I'm a firm believer in a good challenge. If you're not being challenged, you're probably not growing. Posting interesting and relevant content on my areas of interest in information security is certainly a challenge. Unlike emerging exploits, topics like secure development, usability, visualization and metrics don't move nearly as rapidly, yet I believe there is still a lot to be explored. I'm also here because of people like Jeremiah Grossman, Alan Shimel, Christofer Hoff, Michael Howard, Anton Chuvakin, Joanna Rutkowska and many more of the talented security bloggers out there. They contribute so much of their valuable time educating (and sometimes entertaining) the rest of us, and I find that very inspiring.

I've chosen 'Developing Security' as the blog title because it relates to both development of security software and to the fact that security is an ever-developing topic. I hope to cover topics that not only interest software architects and engineers, but security professionals in general.

And now that the first painful post is done, here I go...

Posted by justin_foster on March 10, 2009 at 08:03 AM in Entrust, Justin Foster, Secure Development |

|

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a011279135bcf28a40112793dcf4b28a4

Listed below are links to weblogs that reference Developing Security:

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment

About

The views and opinions expressed on this blog are my own and in no way represent the views or opinions of my employer, Trend Micro.

 Subscribe in a reader

Archives

Twitter Updates

    follow me on Twitter
    Lijit Search
    Creative Commons License

    Copyright © 2010. This work is licensed under a Creative Commons Attribution 2.5 Generic License.

    Some images used with permission from istockphoto.com, clipart.com and sxc.hu subject to individual copyright.