This is an excellent article of the pros and cons of Encryption in both the proprietary and open source application security programs.
12/8/2014 Matt Little
When it comes to cryptography, there are quite a few myths in the age-old debate about proprietary versus open source application security.
Utter the words "open source" in an organization's tech circles, and you're just as likely to hear an application developer gush as to curse. The term is divisive, a rival sports team debate for the geeky set, but one that usually pushes developers and architects to be creative. When it comes to the debate about open source security development, however, there are more than a few myths and definite room for improvement, especially with respect to encryption.
Open source or proprietary: either/or?
Let's start by quickly spelling out benefits and holes in both proprietary encryption solutions and their open source alternatives. For proprietary, you've got something tested (to some degree) out of the box, nice and tidy. Ah, if only you could get it to work the same way the sales engineers described it… but that's part of the reason you signed an SLA for support. And it's why you'll get alerts of bugs and repeated notices to upgrade as you go along. With buy-in, you're given a handshake deal on data protection, someone for backup or blame, depending on where you sit along the chain of risk.
Full Article
Open Source Encryption Must Get Smarter
Userlevel 7
+54
Be the first to reply!
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.