BSIMM4: Secure development's measuring stick

BSIMM4: Secure development's measuring stick

The fourth iteration of the Building Security In Maturity Model project is a tool you can use as a measuring stick for software security initiatives.
MORE HIGHLIGHTS

How enterprises should react to OWASP's updated Top 10

Expert Michael Cobb highlights the changes made in the 2013 OWASP Top 10 list, including new vulnerabilities and what they mean for enterprises.
Opinion: Attack those software architecture flaws

Many defects aren't found with code review. Gary McGraw and Jim DelGrosso think architectural risk analysis is a must to uncover software flaws.
How to reduce open source code security risk

Expert Michael Cobb explains why enterprises need better open source code management to negate the security risks posed by open source libraries.

Software Development Methodology

Email Alerts

Register now to receive SearchSecurity.com-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Source code security scanners: A revamped option for securing custom software

Software development teams are no longer limited to pen testing and manual code analysis for securing custom code. Tip
Thwarting the ultimate inside job: Malware introduced in the software development process

Ed Skoudis offers tips for securing the software development process. Tip
Software Forensics: Chapter 2 -- The Players: Hackers, Crackers, Phreaks, and Other Doodz

This chapter examines the players involved in software forensics. Tip
An indictment for applications development

Twenty years into the client-server revolution, it's a measure of inadequacy of secure coding that only now are the first books being written on how to secure software. Tip
Oracle's Mary Ann Davidson: Secure coding? Absolutely!

Mary Ann Davidson, CSO of Oracle, responds to Andy Briney's commentary on secure coding. Tip
Exploiting Software: How to Break Code, Chapter 7 -- Buffer Overflow

This excerpt is from Chapter 7, Buffer Overflow of Exploiting Software: How to Break Code written by Greg Hoglund and Gary McGraw. Tip
Secure software: The source of the problem is the solution

The solution to almost all insecure coding is right before our very eyes. Programmers just need to take the proper precautions and carefully write out the code. Tip
Secure coding essential to risk mitigation planning

Information Security magazine's editorial director Andrew Briney talks about the lack of incentive for making code more secure. Tip
Security in the software development life cycle

Small changes in the software development life cycle can substantially improve security without breaking the bank or the project schedule. Tip
Customizing the Security Architecture

This chapter demonstrates ways to augment the security architecture, including how to develop custom implementations of the various security classes. Tip

Latest Headlines

Featured

E-Books

E-Zines

E-Handbooks

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Resource Centers

Blogs

MORE HIGHLIGHTS

Software Development Methodology

Email Alerts

More from Related TechTarget Sites