Upgrade to Pro — share decks privately, control downloads, hide ads and more …

從 VulReport 談漏洞揭露與企業資安漏洞管理

Sylphid
April 02, 2015

從 VulReport 談漏洞揭露與企業資安漏洞管理

Sylphid

April 02, 2015
Tweet

Other Decks in Technology

Transcript

  1. About Me • 蘇展志 Sylphid • 重要資歷 – Defcon 9

    speaker – HITCON 2012 speaker – 國家資通安全技術服務與防護管理計畫 – Web 應用程式安全參考指引 – 審查委員召集人
  2. Security in SDLC Define Design Develop/Test Deploy Maintain Security requirements

    Risk analysis Code Review Dynamic testing Design review Continuous monitoring