By Robert Lemos CNET News.com
Published on ZDNet News: February 16, 2005, 8:57 AM PT
SAN FRANCISCO--Software companies are taking colleges to task for not producing computer science graduates who know how to create secure programs.
In a two-hour panel session Tuesday at the Secure Software Forum here, Oracle, Microsoft and other software makers attempted to analyze why flawed software is still overwhelmingly the rule and not the exception in the industry. A major contributor, the companies said, is college students' lack of a good grounding in secure programming.
"Unfortunately, if you are a vendor, you have to train your developers until the universities start doing it," said Mary Ann Davidson, chief security officer at Oracle, who kicked off the panel discussion that, while separate from the ongoing RSA Security Conference, addressed many of the same topics.