She also was instrumental in making Mozilla more open and communicative about its security practices, bringing in the concept of threat modeling, as well.
The company has been very public about its software security program, to the point of publishing its threat modeling process and tools and exporting the program to its partners and other third parties.
As for the plan to rely on computer modeling and simulations rather than tests, Lugar said the Senate was being asked to trust the security of our country to a program that is unproven and unlikely to be fully operational until perhaps 2010.