pdfreaders.org

Bringing Security Testing to Development: How to Enable Developers to Act as Security Experts

by Achim D. Brucker, Dimitar Yanev, and Stephen Hookings

Security testing is an important part of any security development life-cycle (SDLC) and, thus, should be a part of any software development life-cycle.

We will present SAP's Security Testing Strategy that enables developers to find security vulnerabilities early by applying a variety of different security testing methods and tools. We explain the motivation behind it, how we enable global development teams to implement the strategy, across different SDLCs and report on our experiences.

Keywords:
Categories:
Documents:

QR Code for talk:brucker.ea:owasp-sectest:2015.Please cite this article as follows:
Achim D. Brucker, Dimitar Yanev, and Stephen Hookings. Bringing Security Testing to Development: How to Enable Developers to Act as Security Experts. OWASP AppSec EU, 21. may. 2015.
(slides) (handout) (BibTeX) (Share article on LinkedIn. Share article on CiteULike. )

BibTeX
@Talk{ talk:brucker.ea:owasp-sectest:2015,
abstract = {Security testing is an important part of any security development life-cycle (SDLC) and, thus, should be a part of any software development life-cycle.\\\\We will present SAP's Security Testing Strategy that enables developers to find security vulnerabilities early by applying a variety of different security testing methods and tools. We explain the motivation behind it, how we enable global development teams to implement the strategy, across different SDLCs and report on our experiences.},
author = {Achim D. Brucker and Dimitar Yanev and Stephen Hookings},
day = {21},
event = {OWASP AppSec EU},
handout = {https://www.brucker.ch/bibliography/download/2015/talk-brucker.ea-owasp-sectest-2015-2x2.pdf},
isodate = {2015-05-21},
lecturer = {Achim D. Brucker},
location = {Amsterdam, The Netherlands},
month = {may},
slides = {https://www.brucker.ch/bibliography/download/2015/talk-brucker.ea-owasp-sectest-2015.pdf},
slideshare = {key/qj2fmkiI8btRss},
slideshare_height = {400},
slideshare_width = {476},
title = {Bringing Security Testing to Development: How to Enable Developers to Act as Security Experts},
url = {https://www.brucker.ch/bibliography/abstract/talk-brucker.ea-owasp-sectest-2015},
video = {https://www.youtube.com/watch?v=LZoz4cv0MAg},
year = {2015},
}