Posts Tagged ‘bad guys’

Life of A Programmer — Session 7 — How Do I Become a Quality Assurance Software Engineer

September 17, 2013

RULE 2 — TEST ALL WORK PRODUCTS.

I was able to “look over NSA’s shoulder” when they were developing
SELINUX (Secure Linux Operating System”.

Their activity can be best describe as “programming as usual”.

I asked them about their test plans.  They said that they were not
going to test the system.  It would be Common Criteria tested when
delivered.

This is not an adequate test plan.  Testing all of the work-products
is the only way to thoroughly test the product.

Back in my hardware engineering days, we made test plans which
thoroughly tested each circuit board.  Divide and conquer!

SELINUX will fall short of its intended goal.  The bad-guys will
find the weak points.

MORE IN THE NEXT MESSAGE

Advertisements