O'Reilly logo

Enterprise Software Security: A Confluence of Disciplines by Dan S. Peters, Mark G. Graff, Diana L. Burley, Kenneth R. van Wyk

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

4. Implementation Activities

Image

We come at last to a discussion of security at implementation time.

We will focus particularly on the good that can be done if information security teams and software development teams collaborate at this stage. In many ways, security in implementation is easier to talk about than for design and planning activities. Measuring success in this stage is certainly easier, given the quality of automatic coder checkers available today. Is that why many security teams focus entirely on implementation? Or is it because (in our experience) so many security bugs originate in this phase of development? Whatever the reason, development ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required