Along the Cisco Secure Development Lifecycle Journey

No ratings

Presented at Security Development Conference 2012 by

Greg Akers

Across the industry, companies are striving to assure the security and resiliency of their products. Cisco has committed to build security into its products to detect, fix, mitigate and prevent design and code vulnerabilities that could become exploitable. Cisco is in year three of the Cisco Secure Development Lifecycle (CSDL), its proactive security approach for product development that identifies specific tools and processes to deliver secure and resilient products to customers. Baseline functionality, security testing, design analysis, and management of 3rd-party software are all part of Ciscos development process. This approach reduces customer-found defects, improves product quality, and minimizes development costs by providing one source for tools, techniques, and methodsalong with documentation, training, and supportto help assure the delivery of secure and resilient products for customers. In this keynote address, Cisco Senior Vice President Greg Akers will chronicle the companys three-year journey in implementing CSDL in its environment. He will discuss motivations for CSDL at Cisco, key accomplishments and their benefits to customers, while sharing his vision for how CSDL will become an ever-more prominent aspect of Ciscos emphasis on trustworthy product architecture and development.