What are folks' experiences with software security training for
developers? By this, I'm referring to teaching developers how to write
secure code. Ex. things like how to actually code input validation
routines, what "evil" functions and libraries to avoid, how to handle
exceptions without divul
bject: [SC-L] Software Security Training for Developers
What are folks' experiences with software security training for developers?
By this, I'm referring to teaching developers how to write secure code. Ex.
things like how to actually code input validation routines, what "
t-1-of-3-%e2%80%93-training-material/.
--Sammy.
Sammy Migues
Director, Knowledge Management and Training
703.404.5830 - http://www.cigital.com<http://www.cigital.com/>
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of McCown,
Christian
material/.
>
>
> --Sammy.
>
> Sammy Migues
> Director, Knowledge Management and Training
> 703.404.5830 - http://www.cigital.com
>
>
>
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> On Behalf Of McCown, Christian M
> Se
oroughly understands the material and that they've
> > > worked with the training provider to ensure the material is appropriately
> > > customized to their needs.
> > >
> > > Effectiveness is in the eye of the beholder. The actual impact of
> > > developer
IO.
--Sammy.
-Original Message-
From: Hollis via Rubicon Recluse [mailto:[EMAIL PROTECTED]
Sent: Monday, August 20, 2007 2:09 PM
To: Johan Peeters
Cc: Sammy Migues; sc-l@securecoding.org
Subject: Re: [SC-L] Software Security Training for Developers
Hi Sammie and Yo,
Tkx for the good highlev
uired.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of McCown, Christian M
Sent: Thursday, August 16, 2007 7:23 PM
To: sc-l@securecoding.org
Subject: [SC-L] Software Security Training for Developers
What are folks' experiences with software security tr
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Nish Bhalla
Sent: Thursday, August 16, 2007 11:21 PM
To: 'McCown, Christian M'
Cc: sc-l@securecoding.org
Subject: Re: [SC-L] Software Security Training for Developers
Hi Chris,
We at Security Compass have been doing
coding.org
Subject: RE: [SC-L] Software Security Training for Developers
One of the things that is somewhat frustrating as a customer to training and
software vendors are statements such as "some general policy and guidelines"
without any pointers to what they should specifically cont