BruceSchneier is founder and CTO of Counterpane, an Internet security firm: http://www.counterpane.com Author of ''AppliedCryptography'', ''SecretsAndLies'', and ''BeyondFear''. He's a frequent critic of poor security practices. It may appear that his primary focus of criticism is MicrosoftSecurity, but they ''are'' the largest target around. To be fair, he has given them due credit for their good security practices, too. He has a blog: http://www.schneier.com/blog/ And publishes a free monthly newsletter: http://www.schneier.com/crypto-gram.html * did he said anything about recent (2004+) progress in WebServicesSecurity? For example, will he still consider SOAP a security risk if it is used within the WS-Security context? DeleteWhenCooked 05 Article on Bruce at http://www.mercurynews.com/mld/siliconvalley/business/columnists/gmsv/11209523.htm ---- '''Viewpoints''' ''Praises for matters related to MicrosoftSecurity '' "Instead of making promises I didn't believe (Gates) could keep, he was demonstrating substantial improvement in many areas that are important, like internal development processes," * Feb05 on MS initiatives at RSA conference, see http://www.techworld.com/security/news/index.cfm?NewsID=3155 "Simple. Clever. Elegant. (GhostBuster rootkit detection)... (MS) should release this tool to the world. Make it public domain." * http://www.schneier.com/blog/archives/2005/02/ghostbuster.html ''And not so impressed in other MicrosoftWay practices'' "MS has reasons to delay TrustworthyComputing document publication date so WindowsVista is not affected?". See more at Aug05 writeup at http://news.zdnet.com/2102-1009_22-5844520.html?tag=printthis ---- CategoryAuthor