This podcast is part of SearchSecurity.com's Security School lesson, Web application attacks: Building hardened apps. For more learning resources, visit either the lesson page or the Security School course catalog page.
Securing Web applications is no longer possible if it's only an after-the-fact exercise. Software security best practices must be integrated into the software development life cycle (SDL) so attackers never have a chance to exploit common application flaws.
In this "countdown" podcast, Cory Scott covers the essential framework for including security in
a software development life cycle. You’ll learn five things that are essential to a successful SDL
security strategy and how to begin to evangelize and implement security to application
Download for later:
- Internet Explorer: Right Click > Save Target As
- Firefox: Right Click > Save Link As
About the author:
Cory Scott is a director with security consulting firm Matasano Security.
This was first published in November 2011