Introduction

I’ve been thinking for a long time that I should get off my backside and start a blog. There are a number of things in the security community that benefit from informal sharing of information and spreading best practices among interested parties. Sounds like a perfect opportunity to take advantage of blogging.

So who am I? I wear a number of hats and carry a number of titles, but perhaps the most relevant one is Manager of the Security Engineering and Coordination Team. This team is essentially the interface between Sun and the outside world for all things related to security issues/problems with our products. Think you’ve found a vulnerability in Java? Want to know about the latest Solaris security patches? Got a question about JASS? We’re a great place to start.

We’re the folks behind the Security Resources on Sunsolve: http://sunsolve.sun.com/pub-cgi/show.pl?target=security/sec

We’re also the folks behind security-alert@sun.com

Hopefully, in my blogs to come, I’ll share some of how we manage and react to potential security vulnerabilities in Sun’s products. I’ll share why we do things the way we do and some of the considerations that must be evaluated in our decision making. I’ll also be writing about the challenges and opportunities from a security perspective of Open Solaris.

Posted at 02:47PM May 24, 2005 by drscholl in General  |  Comments[0]