SEARCH    
SAFECode Driving Security and Integrity

Check out the SAFECode Blog

SAFECode Seeks Public Comment on Secure Development Practices 2ND EDITION.

Fundamental Practices for Secure Software Development SAFECode has released, “Fundamental Practices for Secure Software Development 2nd Edition: A Guide to the Most Effective Secure Development Practices in Use Today.” The report is intended to help others in the industry initiate or improve their own software security programs and encourage the industry-wide adoption of fundamental secure development methods.
 
Download "Fundamental Practices for Secure Software Development 2nd Edition: A Guide to the Most Effective Secure Development Practices in Use Today." (pdf) 1.9M
 
After you've read the paper, send us your comments.

SAFECode has released, “Software Integrity Controls: An Assurance-Based Approach to Minimizing Risks in the Software Supply Chain.” As the first industry-developed guidance on software integrity practices, this paper builds upon the Software Supply Chain Integrity Framework released in July 2009 and provides actionable recommendations for minimizing the risk that vulnerabilities could be inserted into a software product during its sourcing, development and distribution.
 
Download "Software Integrity Controls: An Assurance-Based Approach to Minimizing Risks in the Software Supply Chain." (pdf) 2.3M
 
After you've read the paper, send us your comments.

SAFECode.org is a comprehensive online resource for news and information about software assurance. SAFECode members include Adobe, EMC Corporation, Juniper Networks, Inc., Microsoft Corp., Nokia, Siemens AG, SAP AG, and Symantec Corp.

Please visit our site often as we will be continually adding new information and educational materials. You can also subscribe to our email alerts to receive the latest SAFECode updates and news.
 
Email:

Confirm Email:

(Unsubscribe at anytime)
Facebook   Twitter

NEWS

Register to attend the SAFECode networking reception at the RSA Conference in San Francisco on February 28th.

Siemens, a Global Powerhouse in Electronics and Electric Engineering, joins SAFECode. “As one of the world’s largest and most diverse corporations, Siemens brings unique expertise and perspective to SAFECode’s efforts.” More

SAFECode releases "Interpreting the BSIMM: A SAFECode Perspective on Leveraging Descriptive Software Security Initiatives" Download pdf

Kudos to SAFECode member, Cassio Goldschmidt of Symantec! Cassio was recently recognized by (ISC)2 with the Community Service Star award for his volunteer work to broaden security awareness; and he was selected as a finalist for the Information Security Leadership Award in the Security Practitioner category.

SAFECode Releases Updated Guidance on Secure Development Practices
The new report provides foundational set of secure development practices based on an analysis of the real-world actions of SAFECode members More

SAFECode Releases "Software Integrity Controls: An Assurance-Based Approach to Minimizing Risks in the Software Supply Chain.”
The new report provides actionable recommendations for minimizing the risk of vulnerabilities being inserted into a software product during its sourcing, development and distribution. More

 

SAFECode MEMBERS

© 2007-2012 Software Assurance Forum for Excellence in Code (SAFECode) - All Rights Reserved