Security and the Software Development Lifecycle: Secure at the Source

In its research on "Securing Your Applications: Three Ways to Play" (August 2010), Aberdeen found that companies leverage three distinct strategies to address the security threats and vulnerabilities that are latent in their currently deployed portfolios of application software: find and fix, defend and defer, and secure at the source. Taking all factors into consideration, should the primary means of achieving secure applications be inspection, additional layers of protection, or prevention? The answers to these questions are one part context, one part business judgment, and one part philosophy. This Research Brief represents the third in a three-part series in which Aberdeen analyzes current users of each approach to provide additional insights into the benefits and tradeoffs of these three high-level strategies for securing Internet-facing enterprise applications. Request Free!