+ Follow

• 2,590 views

Many companies are using an ad hoc software development strategy that uses as few resources as possible. Only when there is a security incident can these organizations justify change to management. We

Many companies are using an ad hoc software development strategy that uses as few resources as possible. Only when there is a security incident can these organizations justify change to management. We recommend a stripped down version of the classic Secure Development Lifecycle called "SDL Light" that recognizes the haste involved in a first release. It begins after the software is released and becomes compromised. SDL Light has two main advantages: Fast response and barebones resource requirements. The process uniquely manages this by heavily focusing on templates for testing and Errata’s list of "20 Most Common Bugs" which identifies most security problems found in software. This process leverages the decades of combined research and on-site experience of the Errata Security pentesting team without the resource drain of housing a team of "Security Experts."

Accessibility

• View text version

Categories

• Technology

Tags

bsidessf 2010

Upload Details

Uploaded via SlideShare as Adobe PDF

Usage Rights

© All Rights Reserved

Flagged as inappropriate Flag as inappropriate

Flag as inappropriate

Select your reason for flagging this presentation as inappropriate. If needed, use the feedback form to let us know more details.

None Pornographic Defamatory Illegal/Unlawful Spam Other Terms Of Service Violation Cancel

File a copyright complaint

1 Embed 12

http://www.slideshare.net

12

Statistics

Favorites

2

Downloads

29

Comments

0

Embed Views

12

Views on SlideShare

2,578

Total Views

2,590