You Are Here: Presentation Materials for Introduction to Web Application Security
Presentations
- Introduction to the Secure System Development Life Cycle (SSDLC)
- Deborah Snyder, Information Security Officer, NYS Office of Temporary and Disability Assistance
- PDF Format (
474 KB) - HTML Format
- Initiation Phase
- Anthony Gerkis, Accenture Inc.
- PDF Format ( 633 KB)
- HTML Format
- Application Design and Development
- Symantec Corp.
- PDF Format ( 2,902 KB)
- HTML Format
- Testing and Implementation
- Matt Rose, Fortify Software
- PDF Format ( 61 KB)
- HTML Format
Handouts
Note: Handouts below are provided in Adobe PDF format. A MS Word version of the handouts could be made available if needed. Please send your request to info@nysforum.org.
- A Practical Approach to Threat Modeling, Tom Olzak, March 2006
- PDF Format ( 825 KB)
- Redmond Developer News, A New Security Mindset Security moves to the forefront in application development.
- PDF Format ( 1,429 KB)
- Security in the SDLC Articles
- PDF Format ( 121 KB)
- Risk Management Strategies, Security in the software development life cycle
- PDF Format ( 51 KB)
- OTDA Application Security Community of Practice (ASCOP) Secure Application Development Resource List
- PDF Format ( 3,959 KB)
- OTDA Information Security Plan template
- PDF Format ( 98 KB)
- OTDA Information Security Considerations & Checkpoints in the System Development Life Cycle (SDLC)
- PDF Format ( 30 KB)
- OTDA Secure System Development Life Cycle Process
- PDF Format ( 36 KB)
- Open Web Application Security Project (OWASP)
- PDF Format ( 9 KB)
- Open Web Application Security Project (OWASP) Top 10, The Ten Most Critical Web Application Security Vulnerabilities
- PDF Format ( 930 KB)
- Source Code Analyzer Reviews
- PDF Format ( 180 KB)
- NIH Systems Development Life Cycle (SDLC), IT Security Activities Matrix
- MS Word Format (
56 KB)