S2D2: Software Security Driven Development

Período:

septiembre, 2014 –

noviembre, 2015

Cliente

Universitat Politècnica de Catalunya (UPC)

Responsable

Manu García-Cervigón, Antonia Gómez, Antonio Rodríguez

Equipo participante inLab FIB:

Ferran López, Joan Morales, Jaume Moral

Especialidades

Tecnologías

Auditoría, Bases de datos, Eclipse, Entornos de desarrollo, gatLab, Implantación/Monitorización, Java, Lenguajes de programación, Maven, Seguridad, SQLite

Inicio » Casos de éxito »

S2D2: Software Security Driven Development

Descripción

The growing number of data hosted in the digital world provokes the need for a methodology to manage the security that can be applied in the different projects related to software development, where one of the most important assets will be hosted or circulate: information.

Although in recent years best practices have been developed for specific development phases and certain programming languages, there is currently no methodology that completely covers security over all phases of application development.

inLab has analyzed the state, and has generated a methodology to avoid the appearance of vulnerabilities during the development of a product and to facilitate its subsequent audit.

A tool has been created to facilitate the application of the methodology created for project managers. The procedure has also been tested in several projects carried out by our staff.

Proyectos Finales de Carrera, Master o Tesis

Desarrollo dirigido por la Seguridad

Estudiante:

Ferran López

Director:

Manu García-Cervigón

Artículos y presentaciones

S2D2: Software Security Driven Development, blog de l’inLab, 19 març 2015.