Software Integrity

 

The complete security vulnerability assessment checklist

A vulnerability assessment is the process that identifies and assigns severity levels to security vulnerabilities in Web applications that a malicious actor can potentially exploit. The assessment is conducted manually and augmented by commercial or open source scanning tools to guarantee maximum coverage. This essential checklist is your playbook when it comes to comprehensively testing a Web […]

Continue Reading...

Posted in Vulnerability Assessment, Web Application Security | Comments Off on The complete security vulnerability assessment checklist

 

Checklist: Take control of your risk management process

The power of threat modeling is that it makes you think about your system’s specific characteristics. It allows you to gain visibility around weaknesses that pose significant impact to your entire organization. This checklist explores four key ways to use threat modeling to avoid sink holes in your risk management process. Identify threats that exist […]

Continue Reading...

Posted in Software Security Testing, Threat Modeling | Comments Off on Checklist: Take control of your risk management process

 

Squash more bugs with this code review checklist

“All software projects are guaranteed to have one artifact in common—source code. Because of this guarantee, it makes sense to center a software assurance activity around code itself.” -Gary McGraw, Software Security: Building Security In Conducting secure code reviews during the software development life cycle (SDLC) helps reduce security bugs in code. The following six steps […]

Continue Reading...

Posted in Code Review, Security Training, Software Development Life Cycle (SDLC), Static Analysis (SAST) | Comments Off on Squash more bugs with this code review checklist

 

Add security to your SDLC with this handy checklist

Whether you use Agile, Waterfall, or something in between, building security into your software development life cycle (SDLC) can improve efficiency and reduce cost—if it’s done the right way. This checklist will guide you throughout the development journey to assure that you’re integrating security into each of the seven SDLC artifacts. 1. Add security to […]

Continue Reading...

Posted in Software Development Life Cycle (SDLC), Software Security Program Development, Software Security Testing | Comments Off on Add security to your SDLC with this handy checklist