<br><br><div class="gmail_quote">On Mon, Mar 4, 2013 at 2:09 PM, Leam Hall <span dir="ltr"><<a href="mailto:leamhall@gmail.com" target="_blank">leamhall@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div class="im">On 03/04/2013 12:56 PM, Jim Kinney wrote:<br>
<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Given the importance of reliable software in a growing number of areas,<br>
I see a need to have professional licenses for programmers that touch<br>
finance, health care, public safety, etc. We don't let just anyone<br>
design a bridge and that's for good reasons. We need to rethink this<br>
field from a public health and safety perspective.<br>
<br>
I can also see a need for mandatory professional certifications for<br>
System Administrators in those same areas.<br>
<br>
ditto for DBA work.<br>
<br>
</blockquote>
<br></div>
While I personally agree with this, very few companies would choose to pay the extra for well coded, secure, apps or systems. The entire concept of off shoring financial computing gives me the willies.<br></blockquote><div>
<br>I see this as something the insurance companies will start pushing for. We require professional certification for doctors and lawyers and engineers and people and companies will pay out the tail for their services. <br>
</div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
So how do you push back as a user? Can we find out which companies actually care about security enough to staff it with reasonably bright people? That is, not just someone who can pass a CISSP test but actually has some clue of how a computer works. Check-lists are good, but they have limits.<br>
</blockquote><div><br>Right now, no idea. We really need the geeks behind the scenes to pull a wikileaks when they see the crap happen. <br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
The flip is understanding that if you're not paying for a service, you're the product. Dice.com doesn't even use https for password changes. Facebook security? Why? They're mining you and your contacts for all you're worth.<br>
<br>
At this point in my life I've come to the understanding that anything I have ever done can be known about, and any transaction I make on the net can be public. Thus I really monitor what I write and avoid on-line transactions except for PayPal and Amazon. Those seem large enough to take things seriously.<span class="HOEnZb"><font color="#888888"><br>
<br>
Leam</font></span><div class="HOEnZb"><div class="h5"><br>
______________________________<u></u>_________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org" target="_blank">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/<u></u>listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/<u></u>listinfo</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>-- <br>James P. Kinney III<br><i><i><i><i><br></i></i></i></i>Every time you stop a school, you will have to build a jail. What you
gain at one end you lose at the other. It's like feeding a dog on his
own tail. It won't fatten the dog.<br>
- Speech 11/23/1900 Mark Twain<br><i><i><i><i><br><a href="http://electjimkinney.org" target="_blank">http://electjimkinney.org</a><br><a href="http://heretothereideas.blogspot.com/" target="_blank">http://heretothereideas.blogspot.com/</a><br>
</i></i></i></i>