- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
Improving Software Security During Development
- Abstract
- A great deal of work has gone into making computer and network systems secure. This paper will explore the basis for creating secure software and systems during development. Software security directly correlates to the quality of the development process and leadership focus on security. Unfortunately, the market drives demand, so the primary effort is spent on feature rich software rather than secure by default systems. This has made the information security industry what it is today; long checklists to correct default insecurity, expensive audits to discover vulnerable systems and layers of defensive measures to protect against attack.