"On one end:
highly formal assurance
ÐCommon
Criteria:
¥Extremely
expensive: about $1M for initial assessment
¥Meaningless
answer:
Ð3
bits: EAL0-7
ÐA
Òhigh assuranceÓ OS can be rooted the next day by a buffer overflow
ÐSo
how much of this is ÒenoughÓ?
"On the other end:
Bugtraq Whack-a-mole
ÐChronic
chain of ÒgotchaÓ vulnerability disclosures
ÐEach
disclosure tells you that you are not secure, but when you are secure is undecided
ÐNot
very helpful :)