I went to hear Carlos Solari speak here in The Netherlands last week, and his message makes a lot of sense: to create truly secure infrastructures, devices and services, all components must be built using the ‘SBD’ or Security By Design principles.
Solari and his team put forth the view that to create a fully secure chain of trust (because trust is as important as security, if not more) the IT industry needs a verifiable, certifiable standard method of testing the eight factors they propose to enable manufacturers and developers to create truly secure products.
Aside from the solid message, Solari is a great speaker with an impressive career: the armed forces, then the FBI, followed by a couple of years as CIO for the Executive Office of the President at the White House. Now with Alcatel-Lucent’s Bell Labs as VP of security solutions, Carlos Solari is spreading the word on security, trust and reliability as inherent parts of any solution.
The book is “Security in a Web 2.0+ World: A Standards-Based Approach” and I recommend it. Amazon link here.
Posts
I find the books utilization of the web 2.0 definition an interesting method of describing the way security is being implemented in 21st web technologies. This term seems to be used rather loosely in terms of it’s meaning, but it’s interesting to see a different way to approach web 2.0 in terms of security.