domingo, 16 de agosto de 2009

Addressing security in outsourced applications

While outsourcing code development offers many benefits, it is absolutely critical that the team responsible for evaluating these applications makes security its principal criterion when evaluating outsourced development proposals.

There are several overriding security issues that arise when considering outsourced development. All of these concerns require careful planning, execution and monitoring to verify that they are addressed prior to acceptance of the software from the outsourcer.

It is essential to adequately define, evaluate and set up security requirement criteria for the security of delivered applications, and they should include security terms in the actual development contract—including implementing secure source code analysis prior to accepting the code.


No hay comentarios: