博文
软件安全框架(SSF)20100125
|||
信息来源于:http://www.bsi-mm.com/ssf/
The Software Security Framework (SSF)
这个软件安全参考框架总共有12个参考点,被分为4组域。建立软件安全成熟度模型SEMM(software security maturity model)实在有必要,可以参考CMMI/CMM、STMM(software testing maturity model)的形式。
Governance
Strategy and Metrics
Compliance and Policy
Training
Intelligence
Attack Models
Security Features and Design
Standards and Requirements
SSDL Touchpoints
Architecture Analysis
Code Review
Security Testing
Deployment
Penetration Testing
Software Environment
Configuration Management and Vulnerability Management
https://wap.sciencenet.cn/blog-89075-290068.html
上一篇:大师Knuth又获奖了20100123
下一篇:工程哲学的一点思考20100125
The Software Security Framework (SSF)
这个软件安全参考框架总共有12个参考点,被分为4组域。建立软件安全成熟度模型SEMM(software security maturity model)实在有必要,可以参考CMMI/CMM、STMM(software testing maturity model)的形式。
Governance
Strategy and Metrics
Compliance and Policy
Training
Intelligence
Attack Models
Security Features and Design
Standards and Requirements
SSDL Touchpoints
Architecture Analysis
Code Review
Security Testing
Deployment
Penetration Testing
Software Environment
Configuration Management and Vulnerability Management
https://wap.sciencenet.cn/blog-89075-290068.html
上一篇:大师Knuth又获奖了20100123
下一篇:工程哲学的一点思考20100125
