Security Auditing

• Early security analysis attempts where based on

  • “Penetrate and patch”
    • Step 1: Attempt to cause the program to fail
    • Step 2: create and apply an individual patch ASAP
    • Step 3: Lather, rinse, repeat

• History also shows that this approach tends to cause more problems than it fixes.

• Why?