This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Software Security 5D Framework"

From OWASP
Jump to: navigation, search
(Created page with "The OWASP Software Security 5D framework represents a practical framework that focus on 5 dimensions to evaluate the maturity of a SDLC. The key areas are the following: - Sw...")
(No difference)

Revision as of 17:18, 23 October 2018

The OWASP Software Security 5D framework represents a practical framework that focus on 5 dimensions to evaluate the maturity of a SDLC.

The key areas are the following: - SwSec PROCESSES - SwSec TESTING - SwSec TEAM - SwSec AWARENESS - SwSec STANDARDS

Traditional Secure SDLC frameworks lack of: - level of awareness for all the people involved in the process - description of the application security roles involved - set of security standards - security testing tools adopted

This new model aims are: - build a more practical Secure SDLC for the Companies - have a fast assessment to undertand the actual maturity of a Company - create a reliable way to build a concrete Software Security Program

Retrieved from "https://wiki.owasp.org/index.php?title=Software_Security_5D_Framework&oldid=244514"