Mozilla Security Officer on patching strategies

SearchSecurity.com has an interesting interview with Window Snyder, Mozilla Chief Security Officer. As a former member of Microsoft security team, she provides her views on how both organization’s methods compare in handling security vulnerabilities, from discovery to patching.

Some quotes:

“It’s almost surprising to think that maybe Mozilla has more resources on the testing side than Microsoft with all its financial resources.” “There’s something like 10,000 people downloading and testing it every night. ”

“Microsoft has a slightly different process where they do look for vulnerabilities in their products and update them in service packs that come out — in Windows’ case — once a year or so. And when vulnerabilities are found externally, they’re addressed in the monthly security updates.”

Read the full article here.