Enter Your Details to Register

Please enter your official e-mail ID. Kindly do not use a personal ID like GMail, Yahoo etc.,
Please do not enter +91 or 0.
Image CAPTCHA
Enter the characters (without spaces) shown in the image.

Enter Your Log-in Details

The Path to a Secure Application: A Source Code Security Review Checklist

Published 13th Apr 2009 | Source - OUNCE LABS | Pages - 16

This paper details the path you must follow to find and eliminate the coding errors and design flaws that expose data and put organizations at risk. Includes details of the five major vulnerability categories and an actionable source code security review checklist. Take the path to more secure software today.

The path to creating a secure application begins by rigorously testing source code for any and all vulnerabilities, to ensure the application will not compromise, or allow others to compromise, data privacy and integrity.

For companies using custom-built, outsourced, or open source applications in-house, ensuring all current and legacy code is secure, however, will be no small challenge. Detecting and eradicating security vulnerabilities has historically been extremely difficult. Many organizations relied on manual code review, which is costly and labor-intensive, as well as penetration testing, which examines only a subset of potential application vulnerabilities in an application.

While both of these approaches have their uses, automatic software vulnerability scanning tools now allow companies to approach secure code development in a more systematic, automated, and successful manner. These automatic vulnerability scanning tools greatly improve the speed and accuracy of code review, and may be integrated seamlessly into the development lifecycle. In fact, the best tools can pinpoint each vulnerability at the precise line of code and provide detailed information about the type of flaw, the risk it poses, and how to fix it.

 

Sponsored Content

Sign In

Please sign in and you will have access to all the content available on CIO.in

Username


Password




Forgotten password?

One Time Registration Only !

Register now For your free CIO.in account and avail the following key benefits:
  • Never fill up any form to download whitepapers and case studies
  • Special invitations to CIO events
  • Be the first to get CIO reports & analysis
  • CIO special offers... and much more!

latest whitepapers

  • Chart your path to the cloud with tactical steps and clear business outcomes

    When you’re venturing into new territory, you want to be sure to have the right guide. Whether your approach is evolutionary or revolutionary, Dell consultants can help you define a strategy that includes the right technology, operational considerations, actionable plan and financial justification for your transition to the cloud.

    Source Dell
  • What Makes a Private Cloud a CLOUD?

    Organizations of every size have the capability to build a private cloud, and frankly, they should. Private clouds are the means for IT to re-establish its value back to the business — enabling productivity, competitive advantage, and increased customer service.

    Source Dell
  • Accelerating business responsiveness through Dell private cloud solutions

    Building a private cloud with Dell will help your organization empower users and customers with the right service levels, optimize application delivery total cost of ownership, and enable service-centric IT that accelerates business responsiveness.

    Source Dell