|
Security University, a member of the Microsoft SDL Pro Network
Security University is the world leader in Qualified Software Security Training & Certification since 1999. Today, we are proud to be a member of the Microsoft SDL Pro Network, a group of security consultants and trainers that specialize in application security and have substantial experience and expertise with the methodology and technologies of the Security Development Lifecycle (SDL), the the industry-leading software security assurance process.
As members of the Microsoft SDL Pro Network, SU is committed to help coders & application developers address their current security problems by assisting them incorporate SDL in their code writing processes.
The Daffodil Principle, if you know anything about it, it's a message based around the principles of one day, one step at a time. At SU we have applied our own SDL message to empower coders with the knowledge of how to write secure code, one coder at a time.
By Jaroldeen Asplund Edwards, it's been around for ten years. This entire area in the San Bernardino mountain range was planted by just one woman, Gene Bauer.
The first principle this field offers is to stop and look. Sometimes the most obvious things are every day things we don't notice. Sometimes they're out of the way in places more difficult to reach.
This woman left an important statement outside of her home..
Answers to the Questions I Know You Are
Asking", was the headline.
The first answer was a simple one. "50,000
bulbs," it read.
The second answer was, "One at a time, by one woman. Two
hands, two feet, and one brain."
The third answer was, "Began in 1958."
Planting one bulb at a time, year after year, this unknown
woman had forever changed the world in which she lived.
"Start tomorrow," for its never too late, one coder at a time. CEO, Security University.
The Impact of Cyber Crime
Incidents of cyber crime continue to grow. Criminals constantly seek out every angle and opportunity the Internet offers them to capitalize and gain financial reward with a relatively low risk of getting caught and punished. The Internet offers criminals a true global reach, and with it comes the ability to easily access a market comprising millions, and possibly billions, of victims. All of this without ever showing their faces nor requiring physical contact with their victims in order to gain access to their target’s personal information, money, and identity. The business of cyber crime is worth tens of billions of dollars a year and is now, by some estimates, larger than the drug trafficking trade. The vast majority of vulnerabilities are found in software that is produced by smaller software vendors. No matter how good a job your IT team does in locking down vendor software, a poorly developed application can open the system wide to attack. In fact, 94% of new vulnerabilities in the first half of 2008 were in applications, while only 6% occurred in Operating Systems.
It is your responsibility to program securely, regardless of the software you write, software protocols, or internal processes. Knowing secure coding techniques that minimize the adverse effects of SQL or other malicious hacker attacks on code is critical, and knowing how to implement Microsoft’s SDL is equally as important. The perfect solution is Security University’s qualified software security certification training. Our classes target SDL training in each Q/SSE Qualified/ Software Security Expert certification class.
View Frequently Asked Questions about SDL
Security University integrates MS SDL in all Q/SSE certification classes. we SDL.. do you?
 Your organization's applications are vulnerable, regardless of the size of your company. In order to develop more secure applications and reduce the risks of malicious and costly attacks, you need to secure code from flaws, vulnerabilities, bugs and misconfigurations. Security University classes target SDL training in each Q/SSE Certification Class.
Q/SSE QUALIFIED/ SOFTWARE SECURITY EXPERT CERTIFICATION
Q/SSE Qualified/ Software Security Expert 5-Day Bootcamp
Q/SSPT Qualified/ Software Security Penetration Testing
Q/ST Qualified/ Software Tester Onsite Bootcamp
How to Break & FIX Web Applications
How to Break & FIX Software
Q/SSH Qualified/ Software Security Hacker/ Defender
Introduction to Reverse Engineering
SDL can make software more secure and private – you can leverage the same process in your code. Microsoft developed the SDL process to improve secure code. Products that were developed with the SDL show measurably reduced vulnerability counts after release, enhancing the security and privacy of the Microsoft platform to better protect customers from malicious and costly attacks.
The Security Development Lifecycle (SDL) is the industry-leading software security assurance process created by Microsoft. A Microsoft-wide initiative and a mandatory policy since 2004, the SDL has played a critical role in embedding security and privacy in Microsoft software and culture. Combining a holistic and practical approach, SDL introduces security and privacy early and throughout the development process. With attacks moving to the application layer, Microsoft is committed to supporting a more secure and trustworthy computing ecosystem by making SDL process guidance, tools and training more accessible to every developer. Visit the Microsoft SDL Pro Network to learn more.
|
