This podcast is part of SearchSecurity.com's Security School lesson, Web application attacks: Building hardened apps. For more learning resources, visit either the lesson page or the Security School course catalog page.

Securing Web applications is no longer possible if it's only an after-the-fact exercise. Software security best practices must be integrated into the software development life cycle (SDL) so attackers never have a chance to exploit common application flaws.

In this "countdown" podcast, Cory Scott covers the essential framework for including security in a software development life cycle. You’ll learn five things that are essential to a successful SDL security strategy and how to begin to evangelize and implement security to application developers.
 

 

 

 

 

 

 

About the author:
Cory Scott is a director with security consulting firm Matasano Security.

15 Nov 2011