[prev in list] [next in list] [prev in thread] [next in thread] 

List:       webappsec
Subject:    Re: Security Best Practice Resources
From:       Michiel Kalkman <secfocus () linux ! nl ! com>
Date:       2003-04-02 13:48:33
[Download RAW message or body]

Hard to believe no-one's mentioned 
Secure Programming for Linux and Unix HOWTO -
http://www.dwheeler.com/secure-programs/

Which is more about actual code than about application 
development, but still..

The Capability Maturity Model for Software (CMM) at 
http://www.sei.cmu.edu/cmm/cmm.sum.html
might also be considered relevant.

And for evaluation there's always the Common Criteria (CC)..
http://www.commoncriteria.org/cc/cc.html

HTH,
     -Michiel.

On Tue, Apr 01, 2003 at 05:20:18AM -0800, phuc6@hushmail.com wrote:
> 
> Could someone please post links to excellent resources, such as
> whitepapers etc, regarding application development security.
> 
> The OWASP guide is great, but is there something even more general,
> not just limited to Web App Sec.
> 
> - MC

-- 
Experience is the way we endorse our prejudices.
[prev in list] [next in list] [prev in thread] [next in thread]