4/2/2018 2:01:37 PM
New software security guide from SAFECode publishes
Development Lifecycle
App Developer Magazine

New software security guide from SAFECode publishes

Richard Harris Richard Harris in Security Monday, April 2, 2018

The third edition of Fundamental Practices for Secure Software Development: Essential Elements of a Secure Development Life Cycle Program has been announced by The Software Assurance Forum for Excellence in Code.

The Software Assurance Forum for Excellence in Code (SAFECode) announced the publication of the Fundamental Practices for Secure Software Development: Essential Elements of a Secure Development Life Cycle Program (Third Edition).

The guide was written by SAFECode members to help software developers, development organizations and technology users initiate or improve their software assurance programs and encourage the industry-wide adoption of fundamental secure development practices. The best practices in the guide apply to cloud-based and online services, shrink-wrapped software and database applications, as well as operating systems, mobile devices, embedded systems and devices connected to the Internet.

"As the threat landscape and attack methods continue to evolve, so too have the processes, techniques and tools to develop secure software. Fundamental Practices for Secure Software Development is an essential guide to help address these threats. It is considered by many in the industry as a go-to resource for secure software development best practices," said Steve Lipner, executive director, SAFECode. "Much has changed and been learned over the last few years and the third edition includes many new updates and additional content."

Significant revisions in this edition include specific guidance on secure development techniques, guidance on critical security features, the relationship of the security response process to secure development and considerations for planning and implementation of a successful Secure Development Lifecycle (SDL) program.

The guide is based on the experience of companies that build software used by many millions and in some cases billions of users and are applicable to organizations of all sizes in evolving secure software development. The best practices identified in this document are currently practiced among SAFECode members including Dell EMC, Microsoft, Intel, Adobe, Symantec, Siemens AG and CA Technologies, a testament to their ability to be integrated and adapted into a wide variety of real-world development environments.
Read more: https://safecode.org

475 Tax Deductions for Businesses and Self-Employed Individuals

Are you paying more taxes than you have to as a developer or freelancer? The IRS is certainly not going to tell you about a deduction you failed to take, and your accountant is not likely to take the time to ask you about every deduction you’re entitled to. As former IRS Commissioner Mark Everson admitted, “If you don’t claim it, you don’t get it.

A hands-on guide to mastering mobile forensics for iOS and Android

Get hands-on experience in performing simple to complex mobile forensics techniques Retrieve and analyze data stored not only on mobile devices but also through the cloud and other connected mediums A practical guide to leveraging the power of mobile forensics on popular mobile platforms with lots of tips, tricks, and caveats.

Gps tracker for kids

The Chirp GPS app is a top-ranked location sharing app available for Apple and Android that is super easy to use, and most of all, it's reliable.

The Latest Nerd Ranch Guide (3rd Edition) to Android Programming

Write and run code every step of the way, using Android Studio to create apps that integrate with other apps, download and display pictures from the web, play sounds, and more. Each chapter and app has been designed and tested to provide the knowledge and experience you need to get started in Android development.