Hi sc-l, Episode 21 of Silver Bullet features a conversation with the Cigital principals (purveyors of the Justice League blog). We talk almost exclusively about software security, including a discussion of CLASP, the SDL, the Touchpoints, OWASP, Architectural Risk Analysis and Threat modeling. Should be good listening for sc-l types.
http://www.cigital.com/silverbullet/show-021/ Merry New Year from Silver Bullet http://www.cigital.com/silverbullet/happy-holidays-from-silver-bullet/ gem company www.cigital.com podcast www.cigital.com/silvebullet blog www.cigital.com/justiceleague book www.swsec.com _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________