Which vendors have established a strong security process during development where they educate firmware developers about security issues, arrange security engineers to review the code, accept vulnerability reports, fix any vulnerabilities found and issue timely firmware updates and advisories?
Asked
Active
Viewed 151 times
0
-
This question is really too broad for any meaningful answer. There is almost no way that any single person has worked with every single vendor out there. You might want to refine your question or risk getting it closed. – ErnieTheGeek Jul 14 '11 at 13:10
-
There's no need for a person to have worked with many different vendors in order to answer this question. You can evaluate the security of a product directly by talking to the firmware developers and other insiders, by looking at how the company handles vulnerabilities and so on. If you know of a single router/modem manufacturer that has established a strong security development process internally, please share your knowledge. It's as simple as that. – Till Ulen Jul 14 '11 at 16:14
1 Answers
2
Cisco and Juniper.
Everything else like netgear, linksys, Buffalo etc. are aimed at the mass market, so everything is colourful, shiny, and easy to use. Sadly security apparently comes as a lower priority to these types.
Here's your trinary selector:
Easy-to-use, Secure, Cheap.
Choose two.
Tom O'Connor
- 27,480
- 10
- 73
- 148
-
2Cisco and Juniper are the only wireless router vendors that care about security, @Tom? Aruba, Meru and Trapeze, at the very least, would probably have something to say about that. – Rob Moir Jul 14 '11 at 10:31
-
-
+! for the trinary selector. Wish more people thought this way :) – ErnieTheGeek Jul 14 '11 at 13:14
-
1