Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

DHS releases software security scoring system

From: InfoSec News <alerts () infosecnews org>
Date: Tue, 28 Jun 2011 04:53:36 -0700 (MST)
http://www.computerworld.com/s/article/9217968/DHS_releases_software_security_scoring_system

By Jaikumar Vijayan
Computerworld
June 28, 2011
The Department of Homeland Security (DHS), along with the SANS Institute and Mitre, released a scoring system on Monday designed to help enterprises verify whether the software they are using meets reasonable standards for secure coding.
The organizations released an updated list of the Top 25 most dangerous programming errors found in software, and a measuring system that lets enterprises score the security of their software based on the presence or absence of those flaws.
The goal is to give enterprises information that will let them make more informed decisions regarding the security of their software, said Alan Paller, director of research at SANS.
The hope is that organizations within the private sector and government will use the Top 25 list and scoring system during the software procurement process, he said. 

[...]


___________________________________________________________
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery
Network, Cisco Switches, SAS 70 Type II Datacenter.
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Previous By Date Next
Previous By Thread Next

Current thread: