lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Mon, 2 Feb 2009 18:19:37 +0200 (EET) From: Juha-Matti Laurio <juha-matti.laurio@...ti.fi> To: bugtraq@...urityfocus.com Subject: Microsoft SDL meets CWE/SANS Top25 Microsoft has released a document describing how the Secure Development Lifecycle (SDL) model maps to so-called CWE/SANS Top25 List, i.e. "25 Most Dangerous Programming Error" list released earlier in January. Item-by-item type analysis as a Word document has been released too. The link is being icluded to referenced MSDN blog entry. http://blogs.msdn.com/sdl/archive/2009/01/27/sdl-and-the-cwe-sans-top-25.aspx Juha-Matti