Lesson 1: Assets

Is there really an important difference between the two?

The bottom line about source availability is that there is secure open and secure closed source, and there is also insecure open and insecure closed source. The issue is not really about closed versus open source software at all. The key to the source availability issue is quality, which depends on training, methodology, and control. If software is built by inadequate developers, without requirements and specifications, it will fail to be secure.