Login



Forgot Password?

Close Panel

Resource Center

SAFECode Training Program Resources

Security Engineering Training: A Framework for Corporate Training Programs on the Principles of Secure Software Development

This paper outlines the fundamentals of a security engineering training program based on an analysis of the shared experiences of SAFECode members. It is not meant to provide a curriculum, but rather a framework that can be put into place to facilitate successful training initiatives
http://www.safecode.org/publications/SAFECode_Training0409.pdf 1.9M

SAFECode Secure Software Development Resources

Fundamental Practices for Secure Software Development 2nd Edition
This paper provides a foundational set of secure development practices based on an analysis of the real-world actions of SAFECode members. It is intended to help others in the industry initiate or improve their own software security programs and encourage the industry-wide adoption of fundamental secure development methods.
http://www.safecode.org/wp-content/uploads/2014/09/SAFECode_Dev_Practices0211.pdf

Practices for Secure Development of Cloud Applications
Developed in partnership with the Cloud Security Alliance (CSA), this paper provides practical secure development recommendations in the context of critical threats specific to cloud computing. http://www.safecode.org/publications/SAFECode_CSA_Cloud_Final1213.pdf

Guidance for Agile Practitioners
This paper provides practical software security guidance to Agile practitioners in the form of security-focused stories and security tasks they can easily integrate into their Agile-based development environments. SAFECode has also made available quick reference guides from the paper for download.
http://www.safecode.org/publications/SAFECode_Agile_Dev_Security0712.pdf http://www.safecode.org/publications/SAFECode_Agile_Section2b-tables.pdf http://www.safecode.org/publications/SAFECode_Agile_Section3-tables.pdf http://www.safecode.org/publications/SAFECode_Agile_Section2a-tables.pdf

Additional Resources from SAFECode Members

Security @ Adobe Blog
Training Secure Software Engineers, Part 1
http://blogs.adobe.com/security/2013/05/training-secure-software-engineers-part-1.html

Security @ Adobe Blog
Training Secure Software Engineers, Part 2: Criteria, content and metrics
http://blogs.adobe.com/security/2013/05/training-secure-software-engineers-part-2-criteria-content-and-metrics.html

Security @ Adobe Blog
Training Secure Software Engineers, Part 3: Tips on creating your own training
http://blogs.adobe.com/security/2013/06/training-secure-software-engineers-part-3-tips-on-creating-your-own-training.html

Microsoft Security Development Lifecycle Tools
http://www.microsoft.com/security/sdl/adopt/tools.aspx

© 2007-2017 Software Assurance Forum for Excellence in Code (SAFECode) - All Rights Reserved. Site Map
Creative Commons Licence This work is licensed under a Creative Commons Attribution-NonCommercial 3.0 Unported License.