Thursday, June 25, 2009

Static Code Analysis for Security

This blog discusses how to leverage static code analysis for security to take a policy-based approach to security initiatives (PCI DSS, OWASP, CWE/SANS, NIST SAMATE, etc.) Such an approach establishes the organization's expectations for quality, leverages an automated infrastructure to ensure consistent, unobtrusive policy application, and automatically monitors policy compliance for visibility and auditability.
Posted by at 1 comment:
Labels: , , ,
Subscribe to: Comments (Atom)