Software Security

• Secure By Design? Techniques and Frameworks You Need to Know for Secure Application Development
• Dec 19, 2012

What do you know about developing secure robust software? Randy Nash discusses several available techniques and frameworks for secure application development.

• Software [In]security: vBSIMM Take Two (BSIMM for Vendors Revised)
• Jan 26, 2012

Gary McGraw and Sammy Migues introduce a revised, compact version of the BSIMM for vendors called vBSIMM, which can be thought of as a foundational security control for vendor management of third-party software providers.

• Software [In]security: BSIMM versus SAFECode and Other Kaiju Cinema
• Dec 26, 2011

Gary McGraw and Sammy Migues clarify the intended use of the Building Security In Maturity Model (BSIMM) and compare it to the SAFECode Practices methodology.

• Software [In]security: Third-Party Software and Security
• Nov 30, 2011

How do you gauge the security of third-party code? A recent security conference examined that question, and Gary McGraw presents the findings in this article.