[SC-L] InternetNews Realtime IT News - New York Plans Application Security Program

Kenneth Van Wyk Wed, 14 Jan 2009 09:25:59 -0800

Now here's an interesting development in the software security space. Seems that New York State is going to start requiring contracted application developers to conform with a minimum set of practices (as covered in the SANS "Application Security Procurement Language", http://www.sans.org/appseccontract/) .


http://www.internetnews.com/dev-news/article.php/3796091

IMHO, putting things like this into contract language is a good thing. Even if the SANS list isn't the right one for everyone, it's a starting point.


Cheers,

Ken

-----
Kenneth R. van Wyk
KRvW Associates, LLC
http://www.KRvW.com

smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
Secure Coding mailing list (SC-L) SC-L@securecoding.org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
_______________________________________________

[SC-L] InternetNews Realtime IT News - New York Plans Application Security Program

Reply via email to