Informix security frameworks: Just how difficult is it to retro-fit "security"?
Everyone "knows" it's much easier to design and build a system that is secure, and that it's much more difficult to retrofit security to an existing environment. But how difficult is it really?