New immune system of information security from CHINA by WooYun - CODE BLUE 2015CODE BLUE
This talk is about the introduction of Wooyun.
WooYun is a platform where security researchers report vulnerabilities and vendors give feedbacks. While WooYun follows vulnerabilities, it also provides researchers a platform for public interests, study, communication, and research.I will introduce how WooYun works and why we start this project in my presentation, also what WooYun changes in the security circle in China, and why, when, where it built, how it developed and the difficulties when developing.
New immune system of information security from CHINA by WooYun - CODE BLUE 2015CODE BLUE
This talk is about the introduction of Wooyun.
WooYun is a platform where security researchers report vulnerabilities and vendors give feedbacks. While WooYun follows vulnerabilities, it also provides researchers a platform for public interests, study, communication, and research.I will introduce how WooYun works and why we start this project in my presentation, also what WooYun changes in the security circle in China, and why, when, where it built, how it developed and the difficulties when developing.
31. Confidential. Wang Terry, Chuan Yun, all rights reserved.
早期發現,早期治療
31
from:
http://www.ambysoft.com/e
ssays/whyAgileWorksFeedb
ack.html
32. Confidential. Wang Terry, Chuan Yun, all rights reserved.
早期發現,早期治療
32
• 紅燈:
• Requirements defect found via acceptance
testing
• Design defect found via system testing
• Programming defect found via system
testing
• Defect found via a review or inspection
33. Confidential. Wang Terry, Chuan Yun, all rights reserved.
早期發現,早期治療
33
• 綠燈:
• Defect found via Independent
Parallel Testing
• Requirement or design defect found
via Model Storming
• Requirement or design defect found
via Active Stakeholder Participation
34. Confidential. Wang Terry, Chuan Yun, all rights reserved.
早期發現,早期治療
34
– 前三名 綠燈:
1. Programming defect found via Pair
Programming
2. Programming defect found via
Continuous Integration
3. Design or programming defect found
via Test Driven Development (TDD)