| Secure CLASP Plug-In announces Ready for Rational Software Validation [message #9472] |
Fri, 21 April 2006 14:31 |
Eclipse User |
|
|
|
Originally posted by: bennetme.us.ibm.com
This is a multipart message in MIME format.
--=_alternative 004FC25188257157_=
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Secure CLASP Plug-in for the Rational Unified Process has successfully=20
validated to the requirements of Ready for IBM Rational software V3.0.2=20
The plug-in met the requirements for the IBM Software Development Platform =
Software Development Lifecycle and Process level of the program, giving=20
Secure Software their second RFRS validated solution. For more information =
on this validation, see the Plug-In Central website on developerWorks:=20
http://www-128.ibm.com/developerworks/websphere/downloads/pl ugin/
Detailed Solution Description:
CLASP (Comprehensive, Lightweight Application Security Process) provides a =
structured way to address security concerns during software development.=20
Implemented as a Rational Unified Process Plug-In, CLASP delivers=20
contextual guidance on over 30 security-related activities organizations=20
can adopt throughout their application development lifecycle. CLASP=20
enables a well-organized and structured approach for moving security=20
concerns into the early stages of the software development lifecycle,=20
where remediation costs ? and risks ? are low.
CLASP can be integrated into any software development process. It?s=20
designed to be both effective and easy to adopt. It takes a prescriptive=20
approach, and documents activities that organizations should be doing.=20
And, it provides an extensive wealth of security resources that make=20
implementing those activities reasonable, particularly when also=20
introducing tools to help automate process pieces.
CLASP?s comprehensive documentation of activities provides a strong=20
framework that enables organization to address issues previously dealt=20
with in an ad hoc manner, if at all. CLASP supports those activities with=20
a number of security resources that enable individuals with even limited=20
security expertise to improve the integrity of their applications. These=20
resources include detailed descriptions of dozens of important concepts,=20
principles, and standards; the CLASP Root Cause Database; a Code=20
Inspection Worksheet, and more.
Functional Description:
Secure Software's CLASP (Comprehensive, Lightweight Application Security=20
Process) Plug-in for the Rational Unified Process provides role-specific=20
application security advice, artifacts, and guidance to:=20
* Application Developers=20
* Application Architects=20
* Project Managers=20
* Requirements Specifiers=20
* Security Auditors=20
* Database Designers=20
* and others=20
CLASP includes:
* Application Security Resources=20
* Vulnerability Root Cause Database=20
* Code Inspection Worksheet=20
* Common and Supplementary Security Requirements=20
* Architecture Checklists and modeling tools
For more information on how your company can partner with IBM Rational,=20
send an email to rfrs1bus@us.ibm.com or visit the Ready for IBM Rational=20
Software website on PartnerWorld:=20
http://www-304.ibm.com/jct09002c/isv/rational/readyfor.html.
--=_alternative 004FC25188257157_=
Content-Type: text/html; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
<br><font size=3D2 face=3D"sans-serif">Secure CLASP Plug-in for the Rational
Unified Process has successfully validated to the requirements of Ready
for IBM Rational software V3.0.2 The plug-in met the requirements
for the IBM Software Development Platform Software Development Lifecycle
and Process level of the program, giving Secure Software their second RFRS
validated solution. For more information on this validation, see the Plug-In
Central website on developerWorks: http://www-128.ibm.com/developerworks/we=
bsphere/downloads/plugin/</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Detailed Solution Description:</font>
<br><font size=3D2 face=3D"sans-serif">CLASP (Comprehensive, Lightweight Ap=
plication
Security Process) provides a structured way to address security concerns
during software development. Implemented as a Rational Unified Process
Plug-In, CLASP delivers contextual guidance on over 30 security-related
activities organizations can adopt throughout their application development
lifecycle. CLASP enables a well-organized and structured approach for moving
security concerns into the early stages of the software development lifecyc=
le,
where remediation costs – and risks – are low.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">CLASP can be integrated into any sof=
tware
development process. It’s designed to be both effective and easy to a=
dopt.
It takes a prescriptive approach, and documents activities that organizatio=
ns
should be doing. And, it provides an extensive wealth of security resources
that make implementing those activities reasonable, particularly when also
introducing tools to help automate process pieces.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">CLASP’s comprehensive document=
ation
of activities provides a strong framework that enables organization to
address issues previously dealt with in an ad hoc manner, if at all. CLASP
supports those activities with a number of security resources that enable
individuals with even limited security expertise to improve the integrity
of their applications. These resources include detailed descriptions of
dozens of important concepts, principles, and standards; the CLASP Root
Cause Database; a Code Inspection Worksheet, and more.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Functional Description:</font>
<br><font size=3D2 face=3D"sans-serif">Secure Software's CLASP (Comprehensi=
ve,
Lightweight Application Security Process) Plug-in for the Rational Unified
Process provides role-specific application security advice, artifacts,
and guidance to: </font>
<br><font size=3D2 face=3D"sans-serif">* Application Developers </font>
<br><font size=3D2 face=3D"sans-serif">* Application Architects </font>
<br><font size=3D2 face=3D"sans-serif">* Project Managers </font>
<br><font size=3D2 face=3D"sans-serif">* Requirements Specifiers </font>
<br><font size=3D2 face=3D"sans-serif">* Security Auditors </font>
<br><font size=3D2 face=3D"sans-serif">* Database Designers </font>
<br><font size=3D2 face=3D"sans-serif">* and others </font>
<br>
<br><font size=3D2 face=3D"sans-serif">CLASP includes:</font>
<br><font size=3D2 face=3D"sans-serif">* Application Security Resources </f=
ont>
<br><font size=3D2 face=3D"sans-serif">* Vulnerability Root Cause Database
</font>
<br><font size=3D2 face=3D"sans-serif">* Code Inspection Worksheet </font>
<br><font size=3D2 face=3D"sans-serif">* Common and Supplementary Security
Requirements </font>
<br><font size=3D2 face=3D"sans-serif">* Architecture Checklists and modeli=
ng
tools</font>
<br>
<br><font size=3D2 face=3D"sans-serif">For more information on how your com=
pany
can partner with IBM Rational, send an email to rfrs1bus@us.ibm.com or
visit the Ready for IBM Rational Software website on PartnerWorld: http://w=
ww-304.ibm.com/jct09002c/isv/rational/readyfor.html.</font>
--=_alternative 004FC25188257157_=--
|
|
|
Powered by
FUDForum. Page generated in 0.02389 seconds
] 
Search
Help
Register
Login
Home
