The Security Development Lifecycle

版权声明：原创作品，允许转载，转载时请务必以超链接形式标明文章原始出版、作者信息和本声明。否则将追究法律责任。 http://blog.youkuaiyun.com/topmvp - topmvp
The software industry has been struggling with how to create and release software that is more security-enhanced and reliable the Security Development Lifecycle (SDL) provides a methodology that works. Adapted from Microsofts standard development process, SDL is a critical way to help reduce the number of security defects in code at every stage of the development process, from design to release. In addition to a brief history of the methodology, this book details each stage of the SDL methodology and discusses its implementation across a range of Microsoft software, including Microsoft® Windows Server™ 2003, Microsoft SQL Server™ 2000 Service Pack 3, and Microsoft Exchange Server 2003 Service Pack 1, to help measurably improve security features. Coauthored by Michael Howard and Steve Lipner, you get direct access to insights from Microsofts security team and lessons that are repeatable and applicable to software development processes worldwide, whether on a small-scale or large-scale.
http://mihd.net/7.3754/0735622140.rar.html
http://rapidshare.com/files/27813601/I0735622140.rar