Day: February 7, 2017
@iotakodali Doesn’t account opening contract apply here? I am not 100% sure. But i think the same rights apply. @CashlessConsumr @logic
@logic I am not. They do all the time in an indirect way. But doesn’t mean lots of f/b + no update equals insecure
@logic And also I am doubtful if regular users can raise security concerns.
@iotakodali Are they legally bound to provide one (Though I want one)? I am not 100% sure. Any lawyers here. @CashlessConsumr @logic
@logic except that the feedback is a feature request and not a security concern.
5. Here is an interesting paper to read “Appsec is eating security” [pdf] hpe.com/h20195/v2/GetP…
4. Usually pushing teams for new release (features) is one of the biggest reason for insecure apps factordaily.com/why-is-india-v…
4. Usually pushing teams for new release (features) is one of the biggest reason for insecure apps
3. Often “security” testing gets neglected because its not a visible feature. Imagine new feature without security testing. That can happen
3. Often “security” testing gets neglected because its not a visible feature. Imagine new feature without security testing. That can happen
2. Release often doesn’t mean better security. In fact it could work as deterrent. Less time to develop, test, security test & release.
2. Release often doesn’t mean better security. In fact it could work as deterrent. Less time to develop, test, security test & release.