Academia Needs to Step Up
CS students coming out of academia still don’t have the skills needed to write code that is not rife with vulnerabilities. It is time for academia to put their endowments where their minds are and start teaching security in development and security in a way that is actually practical versus theoretical and based upon experiences from days gone by. They can’t secure their sites:
Monthly Archives
- August 2008 (2)
- July 2008 (13)
- June 2008 (12)
- May 2008 (17)
- April 2008 (18)
- March 2008 (18)
- February 2008 (20)
- January 2008 (23)
- December 2007 (8)
- November 2007 (12)
- October 2007 (15)
- September 2007 (14)
and they don’t teach practical skills, especially once tenure has set in like walking pneumonia. I would imagine there are some institutions that actual foster strong security learning and education, but at this point, they seem to be few and far between.
So next time you get a call asking to pledge dollars and gifts, resist the urge. Just say no. It's time we got some education that was actually worth the value.
Colleges can't secure their borders so why would you expect them to be able to teach security? They are not equipped to understand security since their security exists in their own minds, i.e., they are legends in their own minds.
Theory is one thing. Actually implementing it is another.
that I've had some recent experience in this space and the 'legends in their own minds' does tend to ring true. Ivory tower untouchables without a shred of operational responsibility ...
Don't you know that those who can't do teach and those who teach get tenure!
I think what you mean is ".... and those who can't teach get tenure!"