Tanya Janca, creator of Alice and Bob Study Safe Coding, discusses safe coding and safe software program improvement life cycle with host Brijesh Ammanath. This session explores how integrating safety into each section of the SDLC helps forestall vulnerabilities from slipping into manufacturing. Tanya strongly recommends defining safety necessities early, and discusses the significance of risk modeling throughout design, safe coding practices, testing methods corresponding to static, dynamic, and interactive utility safety testing (SAST, DAST and IAST), and the necessity for steady monitoring and enchancment after deployment.
This episode is sponsored by Codegate.
Present Notes
Associated Episodes
- SE Radio 475: Rey Bango on Safe Coding with Veracode
- SE Radio 568: Simon Bennetts on the OWASP Dynamic Utility Safety Testing Software ZAP
- SE Radio 541: Jordan Harband and Donald Fischer on Securing the Provide Chain
- SE Radio 514: Vandana Verma on the Owasp Prime 10
Different References
- E-book: Alice and Bob Study Safe Coding
- E-book: Alice and Bob Study Utility Safety
- SheHacksPurple
- YouTube: SheHacksPurple
- Semgrep Academy – Study to create safe software program!
- Course – Constructing An Utility Safety Program – Utility Safety Foundations Stage 1
- Safe Coding
