Companies should certify products' security

Alan Paller: Government buying power could improve commercial software quality.

WT file photo

Security experts have challenged Congress to do more to improve the quality of the nation's software and hardware.

"This is a political problem, not a technology problem," Bruce Schneier told a House Homeland Security subcommittee. "I would like to see government use its purchasing power to improve security."

Schneier, chief technology officer of Counterpane Internet Security Inc. of Cupertino, Calif., and author of many books on cybersecurity, appeared before the subcommittee on cybersecurity, science and research and development. The subcommittee was looking for advice on how to meet the challenge of computer and network security.

Alan Paller, director of research at the SANS Institute of Bethesda, Md., agreed with Schneier's plea that the government use its buying power, telling lawmakers that government requirements on IT acquisitions could help improve the quality of commercial software.

Paller said this process has begun, and that the Energy Department is expected to announce soon a contract with Oracle Corp. of Redwood Shores, Calif.,, in which the company will be required to certify the security of its software configuration.

Schneier also said that liabilities should be imposed on IT users who implement unsecured systems.

Reader Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

What is your e-mail address?

My e-mail address is:

Do you have a password?

Forgot your password? Click here


  • POWER TRAINING: How to engage your customers

    Don't miss our Aug. 2 Washington Technology Power Training session on Mastering Stakeholder Engagement, where you'll learned the critical skills you need to more fully connect with your customers and win more business. Read More


    In our latest Project 38 Podcast, editor Nick Wakeman interviews Tom Romeo, the leader of Maximus Federal about how it has zoomed up the 2019 Top 100. Read More

contracts DB

Washington Technology Daily

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.