{"title":"建立一个有效和高效的持续web应用程序安全程序","authors":"Ma Bang, Himanshu Saraswat","doi":"10.1109/CyberSA.2016.7503287","DOIUrl":null,"url":null,"abstract":"Most of organizations today either have some kind of web application security program or trying to build/enhance. However most of these programs are not getting expected results to organization, neither long lasting nor able to deliver value in continuous and efficient manner and also unable to enhance mind set of developers to build/design secure web applications. A strong application security program involves built in security into Application Development Lifecycle (S-SDLC), developing security guidelines and standards, creating awareness and security trainings, execute effective web application security assessment, establishing meaniningful security dashboards for each stake holder from executives, directors, program managers to developers.","PeriodicalId":179031,"journal":{"name":"2016 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA)","volume":"937 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-06-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Building an effective and efficient continuous web application security program\",\"authors\":\"Ma Bang, Himanshu Saraswat\",\"doi\":\"10.1109/CyberSA.2016.7503287\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Most of organizations today either have some kind of web application security program or trying to build/enhance. However most of these programs are not getting expected results to organization, neither long lasting nor able to deliver value in continuous and efficient manner and also unable to enhance mind set of developers to build/design secure web applications. A strong application security program involves built in security into Application Development Lifecycle (S-SDLC), developing security guidelines and standards, creating awareness and security trainings, execute effective web application security assessment, establishing meaniningful security dashboards for each stake holder from executives, directors, program managers to developers.\",\"PeriodicalId\":179031,\"journal\":{\"name\":\"2016 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA)\",\"volume\":\"937 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-06-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CyberSA.2016.7503287\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CyberSA.2016.7503287","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Building an effective and efficient continuous web application security program
Most of organizations today either have some kind of web application security program or trying to build/enhance. However most of these programs are not getting expected results to organization, neither long lasting nor able to deliver value in continuous and efficient manner and also unable to enhance mind set of developers to build/design secure web applications. A strong application security program involves built in security into Application Development Lifecycle (S-SDLC), developing security guidelines and standards, creating awareness and security trainings, execute effective web application security assessment, establishing meaniningful security dashboards for each stake holder from executives, directors, program managers to developers.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
