Building security into the SDLC (Software development life cycle)

NEWS: 1 - 3 of 76

	GatherSpace beefs up cloud-based requirements management SearchSoftwareQuality.com | 24 Aug 2009 ARTICLE - GatherSpace version 2 is now available and continues to offer low-cost software requirements gathering technology, that is easily learned and easily implemented.

	ALM: Best of breed vs. complete systems SearchSoftwareQuality.com | 20 Aug 2009 ARTICLE - The ALM market is in an uproar as countless acquisitions, trends and shifts have altered the way in which application lifecycles are monitored industry experts explain situation.

	Why the quality assurance department should be involved in testing SearchSoftwareQuality.com | 03.09.2009 OPINION - Bring the quality assurance department's many resources into the software testing process from the get-go, one expert advises, and watch common software development problems dissolve.

	VIEW ALL NEWS ON BUILDING SECURITY INTO THE SDLC (SOFTWARE DEVELOPMENT LIFE CYCLE)

EXPERT TECHNICAL ADVICE: 1 - 3 of 126

BUILDING SECURITY INTO THE SDLC (SOFTWARE DEVELOPMENT LIFE CYCLE) EXPERTS
			Ramesh Nagappan Java Technology Architect, Sun Microsystems ASK A QUESTION		Chris Wysopal co-founder and chief technology officer, Veracode ASK A QUESTION

	Problems caused by skipping analysis stage of SDLC 05 Oct 2009 EXPERT ANSWER - A requirements expert explains the possible pitfalls of skipping the analysis phase in the software life cycle development (SDLC).

	Inexpensive phase of SDLC to catch and fix bugs 09 Sep 2009 EXPERT ANSWER - Is there a phase in the development lifecycle where bugs can inexpensively repaired? This is a common question asked to our expert Kevin Beaver.

	Software development life cycle phases, iterations, explained step by step 20 Aug 2009 EXPERT ANSWER - Phases of the software development life cycle (SDLC) are explained step-by-step, as are iteration concepts, in Robin Goldsmith's expert response to a tester's question.

	VIEW ALL EXPERT TECHNICAL ADVICE ON BUILDING SECURITY INTO THE SDLC (SOFTWARE DEVELOPMENT LIFE CYCLE)

REFERENCE & LEARNING: 1 - 3 of 25

	Web application security -- How to prevent attacks 20 Aug 2008 ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out.

	PCI DSS compliance: The basics SearchSoftwareQuality.com | 03 Jul 2008 LEARNING GUIDE - PCI DSS requires merchants to employ basic application security techniques in order to be in compliance. Here is an overview of PCI DSS and requirement 6.6.

	PCI DSS compliance: Code review SearchSoftwareQuality.com | 03 Jul 2008 LEARNING GUIDE - Code review is a broad concept and those looking at this option for compliance will find plenty of information on the types of code review in this section of the guide.

	VIEW ALL REFERENCE & LEARNING ON BUILDING SECURITY INTO THE SDLC (SOFTWARE DEVELOPMENT LIFE CYCLE)

DOWNLOADS: 1 - 2 of 2

	Injection attacks -- Knowledge and prevention Published by: SearchAppSecurity.com | 31 Oct 2006 PODCASTS - SQL injection is a major threat to application security, but what of other injection attacks? Caleb Sima dissects these exploits and offers astute prevention tips in this podcast.

	The CLASP Application Security Process Published by: Secure Software Inc. | 27 Jun 2006 DOWNLOAD - CLASP™ -- Comprehensive, Lightweight Application Security Process -- is a recognized best practices methodology that provides a well-organized and structured approach for integrating security requirements and ...

	VIEW ALL DOWNLOADS ON BUILDING SECURITY INTO THE SDLC (SOFTWARE DEVELOPMENT LIFE CYCLE)

	SEE ALSO - Topics Related to Building security into the SDLC (Software development life cycle):  Software requirements techniques (Prototyping, Storyboards, Modeling, State transitions), Threat modeling, Use cases and misuse cases, Software requirements tools, Software Requirements Documentation