(From “Secure Programming with Static Analysis”)
Time-of-check, time-of-use race conditions (TOCTOU) occur when a program checks a property and then makes a decision based on this property later on. The classic example is when a c program checks the access properties of a file using the file name and the access() method, and then tries to [...]
Archive for January, 2008
TOCTOU Vulnerabilities
Posted in examples, security, static analysis on January 30, 2008 | Leave a Comment »
How Breakthroughs Happen: Forward and Preface
Posted in creativity on January 17, 2008 | Leave a Comment »
This book by Andrew Hargadon talks about why some companies are more innovative than others. The strategy focus should not just be “where we are going” but “how to get there”. General insights:
Creative innovations often come from combining other ideas
Creativity often occurs within the context of a community of people searching for solutions to a [...]
