This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Secure Software Development Lifecycle Project"
From OWASP
(→In Print) |
(→Description) |
||
Line 44: | Line 44: | ||
The project’s final goal is to help users to reduce security issues, and raise the overall security level from every stage by using the methodology. | The project’s final goal is to help users to reduce security issues, and raise the overall security level from every stage by using the methodology. | ||
+ | |||
+ | |||
+ | OWASP Secure Software Development Life Cycle Project defines security software development process as well as guides, tools, checklists and templates of activities in each phase. | ||
+ | |||
+ | The delivery will contain(not final): | ||
+ | |||
+ | • Introduction: S-SDLC frame | ||
+ | |||
+ | • Training guideline: Providing Security Training System | ||
+ | |||
+ | • Requirements Phase: Risk Evaluation Guideline, and Requirements Criteria Doc. | ||
+ | |||
+ | • Design Phase: Security Design Review Guideline and Threat Modeling Guideline. | ||
+ | |||
+ | • Implement Phase: Security Coding Guide(C/C++、JAVA、PHP,C#) | ||
+ | |||
+ | • Validation Phase: Actives level, Security Testing Guideline | ||
+ | |||
+ | • Release/maintenance Phase: Vulnerability Management and Incident Response Guideline | ||
==Licensing== | ==Licensing== |
Revision as of 09:35, 28 February 2017