Steve Lipner (Reihenfolge der Bücher)

The Security development lifecycle. SDL: a process for developing demonstrably more secure software

Describes how to put software security into practice, covering such topics as risk analysis, coding policies, Agile Methods, cryptographic standards, and threat tree patterns.