Dark Reading

Microsoft to Share Its Secure Development Blueprint, Threat Modeling Tool

Microsoft today said today it will open up its internal Security Development Lifecycle (SDL) framework to its third-party application developers and customers in the spirit of helping promote more ...
CSOonline

Creating a secure development culture

One of the toughest technical challenges in software security isn’t even technical. It’s cultural. Developers are responsible for making the code secure but, in many cases, have not lived up to their ...