Summary: On the 18th episode of The Silver Bullet Security Podcast, Gary talks with Dr. Eugene Spafford, better known as “Spaf.” Spaf is a professor of computer science and Electrical and Computer Engineering at Purdue University and executive director of the Center for Education and Research in Information Assurance and Security (CERIAS). On this episode, Gary and Spaf discuss the role of software testing in computer security, commercial certifications and whether they obviate the need for academic training, how Spaf feels about so-called “ethical hacking,” and why auditing and compliance is an area of emerging specialization. Transcript of this episode [PDF] Dr. Eugene Spafford Spaf’s blog at CERIAS Gene Spafford – Wikipedia CERIAS – Center for Education and Research in Information Assurance and Security PITAC – President’s Information Technology Advisory Committee What did you really expect? – Spaf’s post on “reformed hackers” The Internet Worm Program: An Analysis Yucks Digest
