Four questions for the week ahead in security

Four questions for the week ahead in security

Summary: Here's what I'm pondering for the week ahead.1. When are those Mac patches coming?


Here's what I'm pondering for the week ahead.

1. When are those Mac patches coming? We have Macworld next week and while everyone is looking at those cool ultra portable notebooks don't be surprised if Apple launches a software update. With any luck Apple can address the latest QuickTime flaw. Who will notice? Nobody really. After all, we'll be too mesmerized by Steve Jobs's performance.

2. Is a quarterly patch schedule better? Oracle served notice that it had 27 fixes in the works. Those puppies land on Jan. 15. Oracle's patch schedule is quarterly. Is that necessarily easier to implement?

3. Can the ScanAlert business model work if trust erodes? Earlier this week news surfaced that, which sports the HackerSafe logo, was hacked. If there are similar incidents will businesses pay McAfee's ScanAlert to audit their sites?

4. What are the real implications of REAL ID? The Department of Homeland Security today announced its final rules for the REAL ID program, which is supposed to deter drivers' license fraud. From the DHS statement:

REAL ID will address document fraud by setting specific requirements that states must adopt for compliance, to include: (1) information and security features that must be incorporated into each card; (2) proof of the identity and U.S. citizenship or legal status of an applicant; (3) verification of the source documents provided by an applicant; and (4) security standards for the offices that issue licenses and identification cards.

Is this better fraud deterrence or any easier way to track me?

Topics: Legal, Enterprise Software, Oracle, Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to join the discussion
  • Really Just ONE Question!

    Is you Vista installation up to date!

    If the answer is yes the you are good to go!

    Yeah baby, arhhhruuhhawww!
  • I think the issue

    I think the issue regarding security patches is this;
    have we come to a point where by maybe software
    companies need to actually honestly look at using
    garbage collecting for their software.

    Quite frankly, I am sick and tired of hearing this 'real
    men don't use garbage collection' - for the pragmatic
    programmer, the issue isn't so much the 'loss of
    control' but freeing their capacity up to concentrate on
    more important issues - like bug fixing rather than
    chasing around fixing up memory related issues which
    could be rendered a thing of the past.

    Sure, in the past the hardware wasn't up to the
    challenge, but the simple fact of the matter, today
    most of the hardware is sitting idle, it is never properly
    utilised - so the move wouldn't have a detrimental
    performance penalty either.
  • RE: Four questions for the week ahead in security

    For Apple QuickTime this is a important fix so I think that Apple should fix it before Job's keynote tomorrow because Apple will release the keynote on QuickTime afterwards on QuickTime and if there are problems then Apple will have egg in their eyes.