I saw a post over on Michael Howard’s blog saying that a new software assurance organization called SAFECode has released a whitepaper on industry best practices for crafting a secure development process. The whitepaper is pretty high level but it does do a good job of laying out the basic activities and checkpoints that organizations need to integrate into their software development lifecycles if they want to create secure software.
–Dan
dan _at_ denimgroup.com
A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell
