> Does that mean anything? It means they ticked a lot of boxes. Certifications o... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		api on Aug 14, 2022 \| parent \| context \| favorite \| on: The Zoom installer let a researcher hack his way t... > Does that mean anything? It means they ticked a lot of boxes. Certifications only overlap a little bit with actual security. Most of SOC2 for example is just bureaucracy and a cash grab by enterprise SSO providers.

pjot on Aug 14, 2022 [–]

This post[0] from fly.io does a good job at giving examples of the boxes and bureaucracy.

[0]: https://fly.io/blog/soc2-the-screenshots-will-continue-until...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact