The Code Auditor’s Corner is a place to discuss the security issues that I typically encounter while auditing software applications. I also want to share my philosophy on how security should be approached in software development, and many other topics including:
- the attacker’s perspective
- auditing source code
- tools and techniques to facilitate secure programming
- software security education and training
- the csslp credential
- traceability of security requirements to design
- security testing
- security vulnerabilities in different programming languages
- choosing the right architectural frameworks for your programming project
- Web applications, Web services, and other software applications
Stay tuned!
