Web Application Security, A Beginner's Guide

Industry Standard Secure Development Methodologies and Maturity Models

The activities we’ve discussed in this chapter are a good foundation for building your own secure development methodology. However, when you’re ready to move to the next level, it would be worth your while to take a closer look at some of the industry standard secure development programs. These programs include (but are not limited to) Microsoft’s Security Development Lifecycle (SDL), OWASP’s Comprehensive Lightweight Application Security Process (CLASP), the Software Assurance Maturity Model (SAMM), and the Building Security In Maturity Model (BSIMM).

The Microsoft Security Development Lifecycle (SDL)

The year 2001 was difficult for Microsoft security. In July of that year, ...

Get Web Application Security, A Beginner's Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Web Application Security, A Beginner's Guide by Bryan Sullivan, Vincent Liu

Industry Standard Secure Development Methodologies and Maturity Models

The Microsoft Security Development Lifecycle (SDL)

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly