The software industry has been struggling with how to create and release software that is more security-enhanced and reliable the Security Development Lifecycle (SDL) provides a methodology that works. Adapted from Microsofts standard development process, SDL is a critical way to help reduce the number of security defects in code at every stage of the development process, from design to release. In addition to a brief history of the methodology, this book details each stage of the SDL methodology and discusses its implementation across a range of Microsoft software, including Microsoft® Windows Server 2003, Microsoft SQL Server 2000 Service Pack 3, and Microsoft Exchange Server 2003 Service Pack 1, to help measurably improve security features. Coauthored by Michael Howard and Steve Lipner, you get direct access to insights from Microsofts security team and lessons that are repeatable and applicable to software development processes worldwide, whether on a small-scale or large-scale. This book includes a CD featuring videos of developer training classes.
The Security Development Lifecycle
- Authors
- Michael Howard, Steve Lipner
- ISBN
- 0735622140
- Published
- 28 Jun 2006
- Purchase online
- amazon.com
The software industry has been struggling with how to create and release software that is more security-enhanced and reliable the Security Development Lifecycle (SDL) provides a methodology that works. Adapted from Microsofts standard development process, SDL is a critical way to help reduce the number of security defects in code at every stage of the development process, from design to release.
- Editorial Reviews
- Customer Reviews
Editorial Reviews
You might also like...
Security tutorials
- What You Need to Know about PCI Compliance and Web Application Security Policy Changes
- Effective Controls for Attaining Continuous Application Security Throughout the Web Application Development Life Cycle
- Top 10 Application Security Vulnerabilities in Web.config Files - Part Two
- Testing for Security in the Age of Ajax Programming
Security books
-
CASP CompTIA Advanced Security Practitioner Study Guide: Exam CAS-001 (Comptia Study Guide)
Brand-new security certification insight from an industry expertTargeting security professionals who either have their CompTIA Security+ certification or are looking to achieve a more advanced security certification, this CompTIA Authorized study gui...
Security podcasts
-
IBM developerWorks: TWOdW: Save data energy and pull down old silos
Published 8 years ago, running time 0h2m
Last month, we highlighted a demo on how to integrate reverse-proxy WebSEAL (found in the IBM Security Access Manager solution) with the SAP NetWeaver Application Server ABAP. Now developerWorks has provided a wrapper of resources around the video to help you identify opportunities to learn more
Comments