[Owasp-leaders] UNLEASH THE HOUNDS

Tom Brennan - OWASP tomb at owasp.org
Mon May 15 20:01:52 UTC 2017


Worked on a project last year led by the late Howard Schmidt
<https://en.wikipedia.org/wiki/Howard_Schmidt> with SAFECode (a non-profit)
<http://www.safecode.org> here are the fruits of that labor.
*Managing Security Risks Inherent in the Use of Third-party Components*

The use of third-party components (TPCs), including open source software
(OSS) or commercial off-the-shelf (COTS) components, has become defacto
standard in software development. This paper breaks down the process and
procedures developers need in order to test, improve, and quantify the
security of third party components.

https://www.safecode.org/wp-content/uploads/2017/05/SAFECode_TPC_Whitepaper.pdf
*Tactical Threat Modeling*

Threat modeling, a key technique for architecting and designing systems
securely, is a method that many SAFECode members employ. This paper
leverages SAFECode members’ insights to offer effective ways to better
integrate threat modeling and provides a great resource for organizations
that are looking to integrate threat modeling into their own development
processes and teams.

https://www.safecode.org/wp-content/uploads/2017/05/SAFECode_TM_Whitepaper.pdf


*FREE Online Training*

https://training.safecode.org/courses


All of the collaborators are easy to find online if you have any questions.

@brennantom <http://www.twitter.com/brennantom>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20170515/4cf629a6/attachment.html>


More information about the OWASP-Leaders mailing list