Issue No. 06 - November/December (2006 vol. 4)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2006.142
David Ladd , Microsoft
This article explores some useful concepts that help integrate security more firmly into the software-procurement process. For those involved with software or software procurement in an organization, it helps to start by asking potential vendors some simple questions about their software-development processes, education and training, and accountability.
software security, procurement, security, software development
D. Ladd, "A Software Procurement and Security Primer," in IEEE Security & Privacy, vol. 4, no. , pp. 71-73, 2006.