[SC-L] Software Security Training for Developers

2007-08-16 Thread McCown, Christian M
What are folks' experiences with software security training for developers? By this, I'm referring to teaching developers how to write secure code. Ex. things like how to actually code input validation routines, what "evil" functions and libraries to avoid, how to handle exceptions without divul

Re: [SC-L] Software Security Training for Developers

2007-08-17 Thread Nish Bhalla
bject: [SC-L] Software Security Training for Developers What are folks' experiences with software security training for developers? By this, I'm referring to teaching developers how to write secure code. Ex. things like how to actually code input validation routines, what "

Re: [SC-L] Software Security Training for Developers

2007-08-17 Thread Sammy Migues
t-1-of-3-%e2%80%93-training-material/. --Sammy. Sammy Migues Director, Knowledge Management and Training 703.404.5830 - http://www.cigital.com<http://www.cigital.com/> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of McCown, Christian

Re: [SC-L] Software Security Training for Developers

2007-08-19 Thread Johan Peeters
material/. > > > --Sammy. > > Sammy Migues > Director, Knowledge Management and Training > 703.404.5830 - http://www.cigital.com > > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > On Behalf Of McCown, Christian M > Se

Re: [SC-L] Software Security Training for Developers

2007-08-20 Thread Johan Peeters
oroughly understands the material and that they've > > > worked with the training provider to ensure the material is appropriately > > > customized to their needs. > > > > > > Effectiveness is in the eye of the beholder. The actual impact of > > > developer

Re: [SC-L] Software Security Training for Developers

2007-08-21 Thread Sammy Migues
IO. --Sammy. -Original Message- From: Hollis via Rubicon Recluse [mailto:[EMAIL PROTECTED] Sent: Monday, August 20, 2007 2:09 PM To: Johan Peeters Cc: Sammy Migues; sc-l@securecoding.org Subject: Re: [SC-L] Software Security Training for Developers Hi Sammie and Yo, Tkx for the good highlev

Re: [SC-L] Software Security Training for Developers

2007-08-28 Thread McGovern, James F (HTSC, IT)
uired. From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of McCown, Christian M Sent: Thursday, August 16, 2007 7:23 PM To: sc-l@securecoding.org Subject: [SC-L] Software Security Training for Developers What are folks' experiences with software security tr

Re: [SC-L] Software Security Training for Developers

2007-08-28 Thread McGovern, James F (HTSC, IT)
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nish Bhalla Sent: Thursday, August 16, 2007 11:21 PM To: 'McCown, Christian M' Cc: sc-l@securecoding.org Subject: Re: [SC-L] Software Security Training for Developers Hi Chris, We at Security Compass have been doing

Re: [SC-L] Software Security Training for Developers

2007-08-28 Thread Nish Bhalla
coding.org Subject: RE: [SC-L] Software Security Training for Developers One of the things that is somewhat frustrating as a customer to training and software vendors are statements such as "some general policy and guidelines" without any pointers to what they should specifically cont