TeamMentor™ - Secure Development Standards
|
Improving the software development process has cost benefits and industry regulations are requiring proof of steps taken to secure sensitive information. With TeamMentor, developers can improve application security while remaining competitive in meeting business/regulatory requirements |
| Charles Kolodgy, Research Director, IDC | |
| Align corporate policies & compliances with development implementation | ||
|
TeamMentor™, the industry’s first Web-based secure development process product, provides out-of-the-box standards and guidance to each team member up front and as they design, code and test. It is ideal for |
||
 |
novice secure development teams that need to understand secure coding and testing principles |
 |
|
|
advanced development teams that need quick access to accurate code snippets, test attacks and other critical guidance assets | |
|
|
geographically disparate teams that all need to be developing according to the same standards | |
|
|
IT/Information security teams that need to meet compliance and corporate requirements around development best practices like OWASP and PCI-DSS | |
TRY
IT
Leverage our Expertise for Secure Development
Even with the best of intentions, most secure application development efforts fail due to time, level of effort and quality issues — but it generally falls down to inadequate guidance. The web and IDE help systems provide nominal implementation help to developers but inaccurate and incomplete information often lead to insecure development efforts. TeamMentor is a centralized and broadly available collection of secure development assets including:
|
|
Guidelines, Checklists |
|
Principles |
|
|
How To's |
|
Attack/Vulnerability Descriptions |
|
|
Requirements |
|
Code Snippets and Examples |
|
|
Techniques |
|
Test Cases |
|
|
Design Patterns/Antipatterns |
|
e-Learning modules |
|
Technical
TeamMentor™ supports key development technology silos including C#/ASP.NET, Java/Web and AMP (Apache, MySQL, PHP/Perl/Python). For each environment, TeamMentor delivers its assets to developers through a rich AJAX based browser interface. Other technical specifications:
|
|
Microsoft SQL Server 2005 back end |
|
|
Delivery and authoring engines are written in C# |
|
|
Browser interface is written in AJAX and supports IE6/IE7 |
|
|
Requirements: Microsoft SQL Server 2005 with 5GB available space & AJAX capable browser |
