DHS site offers security tools, tips for software developers

The Homeland Security Department has launched a secure portal to provide best practices, tools and other resources for creating more reliable and secure software for developers and security professionals.

The new Web site, Build Security In, was developed in conjunction with the Carnegie Mellon Software Engineering Institute. It was unveiled at a software assurance forum this week co-hosted by DHS and the Defense Department.

The site takes a building-block approach, with content areas separated into different phases of the software development life cycle such as architecture and design, systems analysis and testing, and implementation. Within each area, articles are compiled discussing best practices for that particular aspect of software development.

Andy Purdy, acting director of DHS' National Cyber Security Division, told forum participants that improving the security and reliability of software is a critical element in protecting the nation's infrastructure.

Software assurance efforts have to 'shift the paradigm from patch management to true software assurance,' Purdy said. 'Our objectives are to raise the awareness on software quality and security by improving software development and acquisition processes and practices.'


  • Russia prying into state, local networks

    A Russian state-sponsored advanced persistent threat actor targeting state, local, territorial and tribal government networks exfiltrated data from at least two victims.

  • Marines on patrol (US Marines)

    Using AVs to tell friend from foe

    The Defense Advanced Research Projects Agency is looking for ways autonomous vehicles can make it easier for commanders to detect and track threats among civilians in complex urban environments without escalating tensions.

Stay Connected