Software assurance encompasses the development and implementation of methods and processes for ensuring that software functions as intended and is free of design defects and implementation flaws. The Software Assurance Forum for Excellence in Code (SAFECode) publishes the “SAFECode Fundamental Practices for Secure Software Development” to help others in the industry initiate or improve their own software assurance programs and encourage the industry-wide adoption of fundamental secure development practices. In 2018, a third edition was published, which updated and expanded the secure design, development and testing practices. The best practices in the guide apply to cloud-based and online services, shrink-wrapped software and database applications, as well as operating systems, mobile devices, embedded systems and devices connected to the Internet.
Dowload Publication