Gary McGraw on secure software development

By Dennis Fisher, Executive Editor 06 Jun 2008 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

McGraw on secure software development (12 min)

Program highlights:

• Let's talk about where things stand with the state of software security in the industry today. Are you optimistic? (0:17)
• I've heard a lot of people say that solving the software security problem is going to cost a lot of time and money in the development process. Is that true? (2:22)
• I know there's a lot of training that goes on in the professional world in terms of software security for developers, but is that happening more in colleges and universities right now compared to five years ago? (4:11)
• What about the commercial software vendors. How much progress are they making on this problem? (6:57)
• Are there one or two problems that really worry you in software security right now? (9:46)

Tags: Software Development Methodology,  Information Security Jobs and Training,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Software Development Methodology Microsoft extends SDL program, adds Agile development template Malware in Google attacks uses spaghetti code Self-defending Web applications thwart attacks Information security book excerpts and reviews Software piracy group offers cash to whistleblowers Quiz: How to build secure applications How to detect software tampering Developers Need Help with Security Errors Should security tests be part of a software quality assurance program? Does an EULA make it truly illegal to decompile software? Information Security Jobs and Training Stay or jump ship? How to be happy with your infosec job How to advance in your infosec career in the current economic storm Schneier-Ranum face-off, part 4: Cybersecurity coordinator Entering 2010: The economy and the state of information security Information security book excerpts and reviews Security School Course Catalog from SearchSecurity.com RSA security conference 2010: news, interviews and updates Straight from the inbox: Your infosec career questions answered Despite recession, information security certification pay continues to climb Bruce Schneier on outsourcing, awareness training

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary bypass  (SearchSecurity.com) Common Weakness Enumeration  (SearchSecurity.com) debugging  (SearchSoftwareQuality.com) fuzz testing  (SearchSecurity.com) heuristics  (SearchSoftwareQuality.com) sandbox  (SearchSecurity.com) threat modeling  (SearchSecurity.com) trigraph  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary