Neil MacDonald: Application Security: A Tool Cannot Solve What Fundamentally is a Process Problem

/Home/Internet Security: Blogs/Internet Security: Gartner blog

March 7th, 2009

One of the areas I research is application security - not only how to develop applications that are more secure, but also how applications should be architected to consume security services. The former is increasingly important as the bad guys move “up the stack” to target applications and information. Secure application development is a priority for nearly every organization I talk with. Whether they are developing their own applications in-house or outsourcing development to a third party, the concern is the same: how can I produce applications that are more secure?

Click the URL above to read the full article