Software Security Austerity - Software Security Debt in Modern Software Development
44CON Information Security Conference via YouTube
Overview
Syllabus
Intro
Technical debt
Security debt.
Security debt-source?
Security debt and SDLS
Accruing debt based on risk
Latent debt resilience
Debt Management
Why we care
Assigning interest rates to security debt
Repayment-New version requirements
Repayment -Severity prioritization
Repayment - Percentage reduction
Debt Expiry
Debt Overhang
Strategic Debt Restructuring
Bankruptcy
Non Repayment - Consequence Planning
Conclusions
Taught by
44CON Information Security Conference