|
|
|
|
|
|
by mmooss
240 days ago
|
|
|
> For security-critical or sensitive situations, auditability should be a requirement. That implies access to source code and capabilty to build it. Vendors can be accountable without providing source code, for example through contracts specifying performance. I don't know how large Sharepoint's source is, though it has many components and I assume there is quite a bit of code. Auditing the source code of something like Microsoft Office seems almost impossible. > first principles. What does that mean in this context? |
|
|