Slashdot Mirror


IEEE Guides Software Architects Toward Secure Design

msm1267 writes: The IEEE's Center for Secure Design debuted its first report this week, a guidance for software architects called "Avoiding the Top 10 Software Security Design Flaws." Developing guidance for architects rather than developers was a conscious effort the group made in order to steer the conversation around software security away from exclusively talking about finding bugs toward design-level failures that lead to exploitable security vulnerabilities. The document spells out the 10 common design flaws in a straightforward manner, each with a lengthy explainer of inherent weaknesses in each area and how software designers and architects should take these potential pitfalls into consideration.

1 of 51 comments (clear)

  1. Fire the Architects by under_score · · Score: -1, Flamebait

    Two articles that I wrote about this:

    The Software Construction Analogy is Broken

    and

    Technical Push-Back

    I don't have a lot of patience with the profession since it's built on a fatally flawed analogy and all software architects ever do is waste and overhead from a lean perspective.