The new Web site, Build Security In, was developed in conjunction with the Carnegie Mellon Software Engineering Institute. It was unveiled at a software assurance forum this week co-hosted by DHS and the Defense Department. The site takes a building-block approach, with content areas separated into different phases of the software development life cycle such as architecture and design, systems analysis and testing, and implementation. Within each area, articles are compiled discussing best practices for that particular aspect of software development.
Andy Purdy, acting director of DHS’ National Cyber Security Division, told forum participants that improving the security and reliability of software is a critical element in protecting the nation’s infrastructure.
Software assurance efforts have to “shift the paradigm from patch management to true software assurance,” Purdy said. “Our objectives are to raise the awareness on software quality and security by improving software development and acquisition processes and practices.”
Autor: Patience Wait
Quelle: Government Computer News, 05.10.2005
