This sample chapter, taken from Software Security: Building Security In, discusses why it's importance to apply risk analysis methods at the design level of your business applications.
By explicitly identifying risk, you can create a good general-purpose measure of software security, especially if you track risk over time.
This sample chapter from the Software Security: Building Security In discusses the necessity of risk analysis in your organization. Performing a risk analysis at the design level is an important part of a solid software security program.
Title: Software Security: Building Security In
ISBN: 0321356705
Published: January 2006
Author: Gary McGraw
Chapter: Chapter 5: Architectural Risk Analysis
Published by Addison-Wesley Professional
Did you find this white paper useful?
10 out of 24 users found this white paper useful
Related white papers
Balancing Security Against Productivity
What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Novell Zenworks Endpoint Security Management: Total Control from a Single Console
Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary information or intellectual property accounted for more...
Staffing Service Improves Productivity and Service With Genuine Software
Jawood Management Associates is a professional staffing agency that places hundreds of contract workers with its clientele each year. The company needed increased reliability from its IT environment and an...
Longhorn Security Enhancements
This webcast provides an overview of security improvements in Longhorn.
Los Alamos National Laboratories Intrusion Prevention Systems: A Real World Case Study
This webcast presents a case study on the Los Alamos National Laboratories Intrusion Prevention Systems.
MSDN Webcast: "Ask the Developer Security Experts" Series: Windows XP Service Pack 2: A Developer Overview - Level 200
This webcast series brings together some of the sharpest security-focused Microsoft developers to provide expert answers to your security questions. Beginning with a brief overview of Windows XP Service Pack...
