Building More Secure Software with Improved Development Processes

Authors:
Michael Howard
Affiliations:
Microsoft
Venue:
IEEE Security and Privacy
Year:
2004

Citing 4
Cited 3

Writing Secure Code

Writing Secure Code
Secure Programming Cookbook for C and C++

Secure Programming Cookbook for C and C++
Threat Modeling

Threat Modeling
Software Security Testing

IEEE Security and Privacy

Towards a structured unified process for software security

Proceedings of the 2006 international workshop on Software engineering for secure systems
Building security requirements using state transition diagram at security threat location

CIS'05 Proceedings of the 2005 international conference on Computational Intelligence and Security - Volume Part II
Application of contract-based security assertion monitoring framework for telecommunications software engineering

Mathematical and Computer Modelling: An International Journal

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this installment, I draw on experiences gained as a member of Microsoft's central security team to outline some basic best practices you can implement in your software development process. These practices affected Microsoft products released since the inception of its Trustworthy Computing initiative in 2002.