BSIMM4: Secure development's measuring stick

BSIMM4: Secure development's measuring stick

The fourth iteration of the Building Security In Maturity Model project is a tool you can use as a measuring stick for software security initiatives.
MORE HIGHLIGHTS

How enterprises should react to OWASP's updated Top 10

Expert Michael Cobb highlights the changes made in the 2013 OWASP Top 10 list, including new vulnerabilities and what they mean for enterprises.
Opinion: Attack those software architecture flaws

Many defects aren't found with code review. Gary McGraw and Jim DelGrosso think architectural risk analysis is a must to uncover software flaws.
How to reduce open source code security risk

Expert Michael Cobb explains why enterprises need better open source code management to negate the security risks posed by open source libraries.

Software Development Methodology

Email Alerts

Register now to receive SearchSecurity.com-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Software piracy group offers cash to whistleblowers

An industry group made up of software companies is offering workers in the U.K. more than $30,000 to blow the whistle on pirated software in their workplace. Article | 03 Dec 2009
SQL injection continues to trouble firms, lead to breaches

Security experts see the secure software development lifecycle improving, but legacy applications and Web server flaws continue to offer a rich treasure trove for attackers. Article | 18 Aug 2009
IBM acquires Ounce Labs for source code analysis

Big Blue plans to add the source code security testing vendor to its Rational software business. Financial terms were not disclosed. Article | 28 Jul 2009
Microsoft issues emergency Active Template Library updates

Security updates address flaws the Active Template Library affecting Internet Explorer and Visual Studio. An IE fix also blocks a method that allows attackers to bypass killbits. Article | 28 Jul 2009
Adobe patches ColdFusion vulnerability blocking website attack

Users of ColdFusion 8 can apply a patch which blocks ongoing attacks compromising websites built with the application development platform. Article | 09 Jul 2009
nCircle statistics show rising Web application vulnerabilities

The number of Web application vulnerabilities detected by the vendor is on track to exceed 2008, according to the latest statistics. Article | 02 Jul 2009
Juniper pulls ATM hacking presentation from Black Hat

Researcher planned to demonstrate a hacking technique targeting the underlying software of a new ATM. Article | 30 Jun 2009
V.i Labs integrates Google maps to track software piracy

Google maps integration is a neat feature, but in this tough global economy are software vendors going to spend the money needed to pursue offenders? News | 08 Jun 2009
Software Piracy pandemic needs government role, better vendor antipiracy plans

Software vendors need better antipiracy plans, but they have to strike a balance to avoid alienating customers and rising support headaches. Column | 18 May 2009
Software piracy losses total $53 billion, study finds

The sixth annual Global Software Piracy Study found software piracy dropped in about half of the 110 countries studied. Article | 13 May 2009

Latest Headlines

Featured

E-Books

E-Zines

E-Handbooks

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Resource Centers

Blogs

MORE HIGHLIGHTS

Software Development Methodology

Email Alerts

More from Related TechTarget Sites