Tip Archive

SANS has created the new Software Security Institute (SSI) (link) which is an exam program designed to ensure that software programmers demonstrate proper security techniques when writing code.

Here are the project goals:

• Allowemployers to rate their programmers on security skills so they can beconfident that every project has at least one “security master” and all of their programmers understand the common errors and how to avoid them.
• Provide a means for buyers of software and systems vendors to measure the secure programming skills of the people who workfor the supplier.
• Allow programmers to identify their gaps in secure programming knowledge in the language they use and target education to fill those gaps.
• Allow employers to evaluate job candidates and potential consultants on their secure programming skills and knowledge.
• Provide incentive for universities to include secure coding in required computer science, engineering, and programming courses.
• Provide reporting to allow individuals and organizations to compare their skills against others in their industry, with similar education or
  experience or in similar regions around the world.

Credit

Technorati Tags: SANS, security, development, applications, software, code, programming

This entry was posted on Thursday, March 29th, 2007 and is filed under Technology, Education. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.