ABSTRACT

The software security problem is growing. Three major trends appear to be driving the problem. The current accepted standard of fixing broken software only after it has been compromised (often called “penetrate and patch”) is insufficient to control the problem.