Developing Secure Products in the Age of Advanced Persistent Threats

被引:15
作者
Baize, Eric
机构
[1] EMC Corp., United States
来源
IEEE SECURITY & PRIVACY | 2012年 / 10卷 / 03期
关键词
Software design - Product development - Life cycle - Computer software;
D O I
10.1109/MSP.2012.65
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Advanced persistent threats (APTs) are making technology providers reconsider their security assumptions for secure product development. This article suggests an industry roadmap for rethinking product security in the face of APTs. It also describes steps EMC has taken to implement this roadmap and strengthen its product development practices. © 2003-2012 IEEE.
引用
收藏
页码:88 / 92
页数:5
相关论文
共 13 条
[1]  
[Anonymous], 2012, OP TRUST TECHN PROV
[2]  
[Anonymous], 2010, SOFTW INT CONTR ASS
[3]  
[Anonymous], 2010, NEW APPROACH CHINA
[4]  
[Anonymous], SECURITY DEV LIFE CY
[5]  
[Anonymous], 2011, FUND PRACT SEC SOFTW
[6]  
[Anonymous], 2012, CLAIMS AN SYM SOURC
[7]  
[Anonymous], 2011, ADV PERS THREATS GO
[8]  
Brainard J, 2003, USENIX ASSOCIATION PROCEEDINGS OF THE 12TH USENIX SECURITY SYMPOSIUM, P201
[9]  
Coviello A., 2011, COMMUNICATION MAR
[10]   Developer-Driven Threat Modeling Lessons Learned in the Trenches [J].
Dhillon, Danny .
IEEE SECURITY & PRIVACY, 2011, 9 (04) :41-47
12