Most software built and released typically comes with a set of defects — implementation bugs and design flaws. While there has been a larger focus on finding bugs rather than on identifying flaws, this document intends to shift some of the focus in security from finding bugs to identifying design flaws in the hope that software architects can learn from others’ mistakes.
From the IEEE Center for Secure Design, an initiative of the cybersecurity project of the IEEE Computer Society.
No comments yet.