CESSDA SML: Decision on CA10 - Security
CA10: Security
MUST BE SML2:
Actions to Be Taken in RDD:
- every developer must have had a basic security training
SHOULD BE SML5:
Actions to Be Taken in RDD:
- address security in every step of development (design, implementation, testing and verification, release)
TODO:
- mit AL über Training für alle Developer sprechen
- Anforderungen an Softwaresicherheit formulieren
- Training erarbeiten (mit Security-Issue-Liste beginnen)