tag:blogger.com,1999:blog-14442178.post114359349671219027..comments2024-03-25T08:08:23.132-07:00Comments on Who Has Time For This?: Bessemer Startups To The RescueDavid Cowanhttp://www.blogger.com/profile/13075075203254308405noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-14442178.post-1149188732936811522006-06-01T12:05:00.000-07:002006-06-01T12:05:00.000-07:00Anonymous, Microsoft would be quick to tell you th...Anonymous, Microsoft would be quick to tell you their Trusted Code initiative will come Save The Day, like that, but unfortunately it won't.<BR/><BR/>Or rather, it would turn the tables a bit, addressing one class of the issue, at the expense of making us have to wait for new software from big, slow players like Microsoft (as small, agile developers would be out of the loop), instead of, like now, waiting for fixes for old software full of security holes. Nor does it address information leak types of bugs and similar flaws making systems more vulnerable to con artists mastering social attack vectors - so people offering the single elegant slate solution are unfortunately in the snake oil business.<BR/><BR/>There are common types of plagues we will see an end to in the coming years as operating systems (perhaps most notably Microsoft, but their competition has their fair share too) mature but software security is about as vulnerable or as safe as homeland security or real-life everyday security in that it will remain something that takes day-to-day work and maintenance to stay on top of.Johan Sundströmhttps://www.blogger.com/profile/04076097346172610543noreply@blogger.comtag:blogger.com,1999:blog-14442178.post-1143662845522143342006-03-29T12:07:00.000-08:002006-03-29T12:07:00.000-08:00This game of cat and mouse in security can't go on...This game of cat and mouse in security can't go on forever. (Or can it?) What do you see as the future of software security? Do you see a point where a single elegant solution will address most, if not all, exploits?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-14442178.post-1143614596319986082006-03-28T22:43:00.000-08:002006-03-28T22:43:00.000-08:00Anonymous,Good question! If you got a chance to re...Anonymous,<BR/><BR/>Good question! If you got a chance to read my posts on investment road maps, you know that we like to first identify a sector and then fund a handful of companies in that sector. The advantages to the portfolio companies are that (we think) we better understand the sector, and that we bring more ongoing expertise to our companies. Even so, as a rule we invest only in companies that do not compete with others in our portfolio. But sometimes two companies who aren't competing when we invest converge later on the same market opportunity, and we do not believe that it would be right for us to unilaterally block them from doing so. That's exactly what happened with Determina and eEye (which wasn't originally in the IPS market).<BR/><BR/>DavidDavid Cowanhttps://www.blogger.com/profile/13075075203254308405noreply@blogger.comtag:blogger.com,1999:blog-14442178.post-1143611204982788742006-03-28T21:46:00.000-08:002006-03-28T21:46:00.000-08:00What's the point of funding two companies that are...What's the point of funding two companies that are competing with each other?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-14442178.post-1143605966256477722006-03-28T20:19:00.000-08:002006-03-28T20:19:00.000-08:00[gulp] you're right.[gulp] you're right.David Cowanhttps://www.blogger.com/profile/13075075203254308405noreply@blogger.comtag:blogger.com,1999:blog-14442178.post-1143604621972257232006-03-28T19:57:00.000-08:002006-03-28T19:57:00.000-08:00Provocative post but I wouldn't be so cocky.Micros...Provocative post but I wouldn't be so cocky.<BR/><BR/>Microsoft can crush both companiesAnonymousnoreply@blogger.com