4. Implementation Activities
We come at last to a discussion of security at implementation time.
We will focus particularly on the good that can be done if information security teams and software development teams collaborate at this stage. In many ways, security in implementation is easier to talk about than for design and planning activities. Measuring success in this stage is certainly easier, given the quality of automatic coder checkers available today. Is that why many security teams focus entirely on implementation? Or is it because (in our experience) so many security bugs originate in this phase of development? Whatever the reason, development ...
Get Enterprise Software Security: A Confluence of Disciplines now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
