pdfreaders.org

Industrial Challenges of Secure Software Development

Achim D. Brucker

Developing secure software requires more than the definition of a process, i.e., a Secure Software Development Lifecycle. The successful implementation of a Secure Software Development Lifecycle relies on many factors among them providing the right tools to developers that support them in writing secure and reliable code.

Based on SAP's experience in the large scale introduction of static code analysis tools as well as the use of dynamic (security) testing tools, I will discuss several challenges of secure development approaches in industry such as finding the right balance between security requirements and development efforts or the between the precision of a security analysis and its scalability.

Schlüsselwörter:
Kategorien:
Dokumente:

QR Code for talk:brucker:ssdl-challenges:2014.Bitte zitieren sie diesen Artikel wie folgt:
Achim D. Brucker. Industrial Challenges of Secure Software Development. Seminar on Road Mapping Cybersecurity Research and Innovation (NIS WG3/CAPITAL/CSP FORUM), 08. oct. 2014.
(Folien) (Handout) (BibTeX) (Share article on LinkedIn. Share article on CiteULike.)

BibTeX
@Talk{ talk:brucker:ssdl-challenges:2014,
abstract = {Developing secure software requires more than the definition of a process, i.e., a Secure Software Development Lifecycle. The successful implementation of a Secure Software Development Lifecycle relies on many factors among them providing the right tools to developers that support them in writing secure and reliable code.\\\\Based on SAP's experience in the large scale introduction of static code analysis tools as well as the use of dynamic (security) testing tools, I will discuss several challenges of secure development approaches in industry such as finding the right balance between security requirements and development efforts or the between the precision of a security analysis and its scalability.},
author = {Achim D. Brucker},
day = {08},
event = {Seminar on Road Mapping Cybersecurity Research and Innovation (NIS WG3/CAPITAL/CSP FORUM)},
handout = {https://www.brucker.ch/bibliography/download/2014/talk-brucker-ssdl-challenges-2014-2x2.pdf},
isodate = {2014-10-08},
language = {USenglish},
lecturer = {Achim D. Brucker},
location = {Florence, Italy},
month = {oct},
slides = {https://www.brucker.ch/bibliography/download/2014/talk-brucker-ssdl-challenges-2014.pdf},
slideshare = {key/fD232sUZtYxuzE},
slideshare_height = {356},
slideshare_width = {427},
title = {Industrial Challenges of Secure Software Development},
url = {https://www.brucker.ch/bibliography/abstract/talk-brucker-ssdl-challenges-2014},
year = {2014},
}