Robust Software

Applied Cryptography Robust Software Quantum Safety Machine Learning Applied to Security Analysis and Exploration of Vulnerabilities Computer Systems Forensic Analysis Reverse Engineering Identification, Authentication and Authorization Secure Execution Environments Direito da Organização e da Segurança

Robust Software
Secure Software Design Principles
Software Security Lifecycle
Software Quality Attributes
Security Requirements
Common Software Attacks
Safe Programming
Robustness, PenTest, Fuzzy and Static Code Analysis
Safety (and Security)

Powered by GitBook

On this page

Software Security Touchpoints

PreviousSecure Development Lifecycle NextSoftware Assurance Forum for Excellence in Code (SAFECode)

Last updated 9 months ago

Code review (Tools)
Architectural risk analysis.
Penetration testing.
Risk-based security testing.
Abuse cases (thinking like an attacker).
Security requirements.
Security operations (not only at software level).

Architectural Risk Analysis

Similar to Threat Modelling

Designers and architects provide a high-level view of the target system and documentation for assumptions and identify possible attacks.

McGraw proposes 3 main steps for risk analysis:

Attack resistance analysis (explore known threats).
Ambiguity analysis (discover new risks).
Weakness analysis (explore 3rd party assumptions).