Secure Application Development

By Adrian Lane

Secure application development is about building secure software. Most security products offer band-aid protection for existing applications: they filter, block, or proxy communications to/from applications that are incapable of protecting themselves. We want to get away from this “Features first, security second” model and code applications that are self-reliant and can protect themselves.

The secure code movement is in its infancy. There are different processes, training programs, and tools to aid the development of secure applications – which we will cover here. We will also reference some of the OWASP and Rugged Software projects.

Papers and Posts


Security + Agile = FAIL

Podcasts, Webcasts, and Multimedia

We do not currently have multimedia for this topic.


We’ll include white and black box analysis, fuzzing, and tools vendors. This list is currently evolving, and we’ll include other firms as time permits.

No Attachments

If you like to leave comments, and aren’t a spammer, register for the site and email us at and we’ll turn off moderation for your account.