IEEE Guides Software Architects Toward Secure Design

Posted by Soulskill on Friday August 29, 2014 @05:47AM from the an-ounce-of-prevention dept.

msm1267 writes: The IEEE's Center for Secure Design debuted its first report this week, a guidance for software architects called "Avoiding the Top 10 Software Security Design Flaws." Developing guidance for architects rather than developers was a conscious effort the group made in order to steer the conversation around software security away from exclusively talking about finding bugs toward design-level failures that lead to exploitable security vulnerabilities. The document spells out the 10 common design flaws in a straightforward manner, each with a lengthy explainer of inherent weaknesses in each area and how software designers and architects should take these potential pitfalls into consideration.

1 of 51 comments (clear)

Min score:

Reason:

Sort:

I love it when the IEEE... by greenwow · 2014-08-29 06:05 · Score: -1, Troll

intentionally does things to piss off the Republicans. They've fought against secure software for years. When they crippled SSL with their 40-bit limit and disallowed the distribution of SSH, they were proven to be the enemies of anyone that cares about the Internet.