Governments recognize the importance of TPM 2.0 through ISO adoption
Earlier today, the Trusted Computing Group (TCG) announced in a press release the Trusted Platform Module (TPM) 2.
-
-
SDL Training
Hi everyone, Shawn Hernan here. Being a security guy is incredibly rewarding because you get to look at virtually any part of a product, from kernel drivers to web services to user education to sales and servicing. -
Training People on Threat Modeling
Adam Shostack here. Blogger Ian Grigg has an interesting response to my threat modeling blog series, and I wanted to respond to it. -
STRIDE chart
There are good reasons to optimize for different points on that spectrum (of better/faster/cheaper) at different times in different products. -
Testing in the SDL
“You can’t test quality in.” It’s a truism coined long ago and an accepted fact of software development.
