Software Transparency
Download Software Transparency PDF/ePub or read online books in Mobi eBooks. Click Download or Read Online button to get Software Transparency book now. This website allows unlimited access to, at the time of writing, more than 1.5 million titles, including hundreds of thousands of titles in various foreign languages.
Software Transparency
Discover the new cybersecurity landscape of the interconnected software supply chain In Software Transparency: Supply Chain Security in an Era of a Software-Driven Society, a team of veteran information security professionals delivers an expert treatment of software supply chain security. In the book, you’ll explore real-world examples and guidance on how to defend your own organization against internal and external attacks. It includes coverage of topics including the history of the software transparency movement, software bills of materials, and high assurance attestations. The authors examine the background of attack vectors that are becoming increasingly vulnerable, like mobile and social networks, retail and banking systems, and infrastructure and defense systems. You’ll also discover: Use cases and practical guidance for both software consumers and suppliers Discussions of firmware and embedded software, as well as cloud and connected APIs Strategies for understanding federal and defense software supply chain initiatives related to security An essential resource for cybersecurity and application security professionals, Software Transparency will also be of extraordinary benefit to industrial control system, cloud, and mobile security professionals.
Software Supply Chain Security
Author: Cassie Crossley
language: en
Publisher: "O'Reilly Media, Inc."
Release Date: 2024-02-02
Trillions of lines of code help us in our lives, companies, and organizations. But just a single software cybersecurity vulnerability can stop entire companies from doing business and cause billions of dollars in revenue loss and business recovery. Securing the creation and deployment of software, also known as software supply chain security, goes well beyond the software development process. This practical book gives you a comprehensive look at security risks and identifies the practical controls you need to incorporate into your end-to-end software supply chain. Author Cassie Crossley demonstrates how and why everyone involved in the supply chain needs to participate if your organization is to improve the security posture of its software, firmware, and hardware. With this book, you'll learn how to: Pinpoint the cybersecurity risks in each part of your organization's software supply chain Identify the roles that participate in the supply chain—including IT, development, operations, manufacturing, and procurement Design initiatives and controls for each part of the supply chain using existing frameworks and references Implement secure development lifecycle, source code security, software build management, and software transparency practices Evaluate third-party risk in your supply chain
Requirements Engineering: Foundation for Software Quality
This book constitutes the proceedings of the 22nd International Working Conference on Requirements Engineering – Foundation for Software Quality, REFSQ 2016, held in Gothenburg, Sweden, in March 2016. The 16 full papers and 5 short papers presented in this volume were carefully reviewed and selected from 64 submissions. The papers were organized in topical sections named: decision making in requirements engineering; open source in requirements engineering; natural language; compliance in requirements engineering; requirements engineering in the automotive domain; empirical studies in requirements engineering; requirements engineering foundations; human factors in requirements engineering; and research methodology in requirements engineering.