3. Secure Apps, Applications & Code
• Developed using: Waterfall / Agile / Wagile etc..
• Secure code costs: ~14% more*
• Microsoft’s SDLC is too expensive for most
• BSIMM is far more practical
• Segregation costs
4. Accepted wisdom
• Requirements / Stories: Risk review
• Design / Architecture: Threat model and review
• Implementation: Secure* frameworks and code review
• Test: Fuzzing, penetration tests etc.
• Sustainment: DiD and quick patching
6. Threat modelling
• Teams: rarely have the skills
• All: see it as a chore / gate
• Distributed teams make it complex
• Natural ability for geeks to communicate also a challenge
• COTS / components make it complex
14. Code review
• Good code review is hard
• Good code reviewers are rare
• Difficult to keep people focused (~3 hours a day)
• Most reliable vulnerabilities are logic which need
confidence, understanding and time
18. General developer, test & ops hygiene
• Often high privileges on their box
• Responsible for own patching
• External e-mail / web on machines
• Test often contractors due to flux requirement
• Code signing certs in CVS etc.
27. UK Offices
Manchester - Head Office
Cheltenham
Edinburgh
Leatherhead
London
Milton Keynes
North American Offices
San Francisco
Atlanta
New York
Seattle
Austin
Australian Offices
Sydney
European Offices
Amsterdam - Netherlands
Munich – Germany
Zurich - Switzerland
Thanks? Questions?
Ollie Whitehouse
ollie.whitehouse@nccgroup.com