[biblio07_001] 1. NIST Special Publication 800-64, Rev. 1, Security Considerations in the Information System Development Life Cycle

[biblio07_002] 2. NIST Report, 2002, The Economic Impacts Of Inadequate Infrastructure For Software Testing

[biblio07_003] 3. ITL Bulletin, September 2004, Advising users on information technology

[biblio07_004] 4. www.itgovernance.co.uk/compliance.aspx

[biblio07_005] 5. The Security Development Lifecycle, Howard M and Lipner S, Microsoft Press, US (2006)

[biblio07_006] 6. Attack Trees, published in Dr. Dobb’s Journal December 1999, Bruce Schneier

[biblio07_007] 7. Threat Modelling, Swiderski F and Snyder W, Microsoft Press, US (2004)

Get Application Security in the ISO27001 Environment now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial