3 matches found
Establishing a Baseline of Software Supply Chain Security Task Adoption by Software Organizations
Software supply chain attacks have increased exponentially since 2020. The primary attack vectors for supply chain attacks are through: 1 software components; 2 the build infrastructure; and 3 humans a.k.a software practitioners. Software supply chain risk management frameworks provide a list of...
Gary McGraw on BSIMM-V and Software Security
Dennis Fisher talks with Gary McGraw of Cigital about the progress of the BSIMM software security measurement model and how development organizations are addressing the challenges of securing their software. Download: digitalunderground131.mp3...
Software Security Programs May Not Be Worth the Investment for Many Companies
SAN FRANCISCO–The discipline of software security has been gaining traction in a lot of organizations both large and small in recent years, thanks in part to the success that vendors such as Microsoft, Adobe and others have had with it. However, for many companies, the time and money spent on...