New Early adopter or innovator? InfoQ has been working on some new features for you. Learn more

  • DevOps Follow 92 Followers

    Securing the Modern Software Delivery Lifecycle

    by Dustin Collins Follow 0 Followers on  Feb 27, 2016 1

    Information security practice has evolved to be pretty good at granting and managing access to confidential information - by people. But automation is taking over, requiring a shift in how we think about securing our infrastructure and applications.

  • Followers

    How Well Do You Know Your Personae Non Gratae?

    by Jane Cleland-Huang Follow 0 Followers on  Nov 27, 2014

    In this article, author discusses three techniques to defend against malicious users in software systems. These techniques includes creating personas to think strategically about the mischief a malicious user might attempt, misuse cases used to determine how the software should respond to unintended use, and activity diagrams annotated with security concerns.

  • Followers

    Defending against Web Application Vulnerabilities

    by Nuno Antunes Follow 0 Followers , Marco Vieira Follow 0 Followers on  Jul 27, 2012 1

    In this article, authors discuss the security in software development life cycle and how to defend against web application vulnerabilities using techniques like white-box analysis and black-box testing. They also talk about secure coding practices based on the defense-in-depth approach using three lines of defense: input validation, hotspot protection, and output validation.


Bryan Sullivan on Security Development Lifecycle

Posted by Srini Penchikala Follow 6 Followers on  Oct 25, 2010

Security Development Lifecycle (SDL) is a security assurance process with a focus on software development. InfoQ spoke with Bryan Sullivan about the current state and future road map of SDL framework.

Login to InfoQ to interact with what matters most to you.

Recover your password...


Follow your favorite topics and editors

Quick overview of most important highlights in the industry and on the site.


More signal, less noise

Build your own feed by choosing topics you want to read about and editors you want to hear from.


Stay up-to-date

Set up your notifications and don't miss out on content that matters to you