BSIMM4: Secure development's measuring stick

BSIMM4: Secure development's measuring stick

The fourth iteration of the Building Security In Maturity Model project is a tool you can use as a measuring stick for software security initiatives.
MORE HIGHLIGHTS

Five key trends jolting software security in 2013

Column: Gary McGraw says five shifts in the IT landscape are affecting software security, but several BSIMM best practices can limit risk exposure.
Why can't I just ignore internal app security threats?

Securing internal applications requires the same due diligence as their Web-facing counterparts. Expert Michael Cobb explains why.
How many revisions make for good code review?

Expert Michael Cobb details how to argue for a multistep secure code review process like the Microsoft SDL, and the pros of secure coding practices.

Software Development Methodology

Email Alerts

Register now to receive SearchSecurity.com-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Adobe patches ColdFusion vulnerability blocking website attack

Users of ColdFusion 8 can apply a patch which blocks ongoing attacks compromising websites built with the application development platform. Article
nCircle statistics show rising Web application vulnerabilities

The number of Web application vulnerabilities detected by the vendor is on track to exceed 2008, according to the latest statistics. Article
Juniper pulls ATM hacking presentation from Black Hat

Researcher planned to demonstrate a hacking technique targeting the underlying software of a new ATM. Article
Common PCI questions: Web application firewalls or source code review?

Is it better to use Web application firewalls, automated source code security reviews or vulnerability scans? Michael Cobb reviews your options. Tip
V.i Labs integrates Google maps to track software piracy

Google maps integration is a neat feature, but in this tough global economy are software vendors going to spend the money needed to pursue offenders? News
Software Piracy pandemic needs government role, better vendor antipiracy plans

Software vendors need better antipiracy plans, but they have to strike a balance to avoid alienating customers and rising support headaches. Column
Software piracy losses total $53 billion, study finds

The sixth annual Global Software Piracy Study found software piracy dropped in about half of the 110 countries studied. Article
Google study backs browser silent auto update feature

A recent study found that manual browser updates resulted in less secure browsers. Experts say software patching needs continued improvements. Mozilla responds. Article
Secure software development starts before coding begins

Source code and binary analysis tools both play a role in secure software development, but experts say careful planning, better education and a lot of hard work are even more important. Article
Security budget issues to resonate at RSA Conference

Increasing pressure to cut costs coupled with new compliance demands could have CISOs looking for answers at the 2009 RSA Conference. Article

Latest Headlines

Featured

E-Books

E-Zines

E-Handbooks

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Resource Centers

Blogs

MORE HIGHLIGHTS

Software Development Methodology

Email Alerts

More from Related TechTarget Sites