Software Security

Archive for November 2011

 

Open source and software maturity models

I’m at the BSIMM3 Conference, in an open source breakout session. The context: you’re an organization with a reasonable application security program. The question, “How to apply that same process maturity to open source where no ‘throat to choke’ exists?” Your organization and its software-providing vendors may not be perfect but at least you can […]

Continue Reading...

Posted in Maturity Model (BSIMM), Open Source Security, Security Metrics, Web Application Security | Comments Off on Open source and software maturity models