Issue No. 01 - January-February (2004 vol. 2)
Martin R. Stytz , US Air Force Research Laboratory
<p>Despite efforts to develop processes and technologies that enhance software application security, to date no one has found a silver bullet and there don't appear to be any on the horizon. Thus, perhaps researchers and developers should apply the defense-in-depth strategy to see if it provides better application security than a single line of defense. In this department, the author explores its implications for application protection technology and research.</p>
defense-in-depth, software security, software development, attack, software tools
M. R. Stytz, "Considering Defense in Depth for Software Applications," in IEEE Security & Privacy, vol. 2, no. , pp. 72-75, 2004.