Skip main navigation
We use cookies to give you a better experience, if that’s ok you can close this message and carry on browsing. For more info read our cookies policy.
We use cookies to give you a better experience. Carry on browsing if you're happy with this, or read our cookies policy for more information.

An ongoing process

For many companies applications are not something they write once and then ignore.

Applications are often products that are continuously developed, producing a stream of new releases. For such products risk assessment becomes an ongoing process, part of the overall product development lifecycle.

Integration of security engineering into the product lifecycle is therefore becoming increasingly important.

A Microsoft white paper Security for Modern Engineering describes how Microsoft have embedded security into the heart of their development process.

A key part of Microsoft’s approach is to automate vulnerability scanning through the use of tools like Fortify SCA. We shall introduce Fortify in week 2.

Share this article:

This article is from the free online course:

Secure Android App Development

University of Southampton

Contact FutureLearn for Support