Fortunately, many amazingly talented people understand and care about the underlying security problems that plague the software industry today, and are focused on improving the odds. While it is clear that there is no silver bullet, the progress many of these experts have made in understanding the problem is tremendous. Even more encouraging is seeing some more progressive individuals and organizations already bringing the required solutions to market.

The Secure Software Forum (SSF) was launched in San Francisco in February 2005 with a blue ribbon panel discussion and a keynote presentation by Oracle CSO Mary Ann Davidson. Throughout the calendar year, companies such as Microsoft and SPI Dynamics continued to collaborate on this initiative through a long-term communications and educational programs focused on secure software development.

With a year of this program complete, there’s a clear understanding that building quality software depends upon optimizing three fundamental pillars: People, Process and Technology. Additionally, an executive level commitment to building security into underlying methodologies is needed through the creation of internal Application Security Assurance Programs (ASAP).

Secure Software Forum 2007(Click Here for more details)

On February 7, 2007, during the RSA security conference in San Francisco, leading companies will gather together again with top analysts, industry spokespeople, notable academic leaders and the vendor community spanning all disciplines within the application lifecycle in an effort to continue to provide the industry with an understanding of the shared global mandate to improve software. Discussion points will include:

The Secure Software Forum continues with special events that include workshops, executive dinners and webcasts through 2007. Join us at an upcoming event near you to learn more about web application security.