Check out the New SAFECode Blog

SAFECode has released, “Software Integrity Controls: An Assurance-Based Approach to Minimizing Risks in the Software Supply Chain.” As the first industry-developed guidance on software integrity practices, this paper builds upon the Software Supply Chain Integrity Framework released in July 2009 and provides actionable recommendations for minimizing the risk that vulnerabilities could be inserted into a software product during its sourcing, development and distribution.
 
Download "Software Integrity Controls: An Assurance-Based Approach to Minimizing Risks in the Software Supply Chain." (pdf) 2.3M
 
After you've read the paper, send us your comments.

SAFECode has released its fourth member report, "Software Supply Chain Integrity Framework." The paper outlines the first industry-driven framework for analyzing and describing the efforts of software suppliers to protect software from the insertion of vulnerabilities as it moves along the global supply chain.
 
 
Download Software Supply Chain Integrity Framework Paper (pdf) 1.4M
 

SAFECode.org is a comprehensive online resource for news and information about software assurance. SAFECode members include Adobe, EMC Corporation, Juniper Networks, Inc., Microsoft Corp., Nokia, SAP AG, and Symantec Corp.

Please visit our site often as we will be continually adding new information and educational materials. You can also subscribe to our email alerts to receive the latest SAFECode updates and news.
 

Email:

Confirm Email:

SUBSCRIBE to Receive
SAFECode ALERTS:
(Unsubscribe at anytime)

   

© 2007-2010 Software Assurance Forum for Excellence in Code (SAFECode) - All Rights Reserved