The Community for Technology Leaders
RSS Icon
Subscribe
Issue No.03 - May/June (2009 vol.7)
pp: 68-71
Michael Howard , Microsoft
ABSTRACT
In January 2009, MITRE and SANS issued the "2009 CWE/SANS Top 25 Most Dangerous Programming Errors" to help make developers more aware of the bugs that can cause security compromises (http://cwe.mitre.org/top25). CWE, which stands for Common Weakness Enumeration, is a project sponsored by the National Cyber Security Division of the US Department of Homeland Security to classify security bugs. This article describes some best practices that can help you eliminate the CWE Top 25 vulnerabilities in your own development environment and products
INDEX TERMS
Basic training, vulnerabilities, CWE, SDL, software development lifecycle
CITATION
Michael Howard, "Improving Software Security by Eliminating the CWE Top 25 Vulnerabilities", IEEE Security & Privacy, vol.7, no. 3, pp. 68-71, May/June 2009, doi:10.1109/MSP.2009.69
23 ms
(Ver 2.0)

Marketing Automation Platform Marketing Automation Tool