2
The Secure Development Lifecycle
We start this chapter by introducing the concept of overcoming the challenges of making software secure through the use of a secure develop ment lifecycle (SDL). There will be further discussions of the models, methodologies, tools, human talent, and metrics for managing and overcoming the challenges to make software secure. We will close with a discussion of the mapping of our SDL with its associated best practices to a generic software development lifecycle (SDLC), which will be the subject of the next six chapters, followed by a chapter mapping our SDL best practices to several of the most popular software development methodologies.
There is still a need for better static and dynamic testing tools and a ...
Get Core Software Security now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.