Selecting and deploying risk assessment methods for the development life cycle 

Session: Secure software development, Wed., Sep. 16, 13:30 - 14:00

Risk assessment is increasingly considered a foundational starting point to develop secure software. Different approaches and methods have been proposed until today. Naturally, not every approach suits a given development organization or project. This talk pinpoints the need for risk assessment in the secure software development lifecycle, depicts properties of several risk assessment approaches, and provides insights on selection and deployment of a matching approach into the development process.

About Jörn Eichler

Jörn Eichler served several years as developer, analyst, and project manager within international software development and enterprise application integration projects. Focusing on software security he joined the Security Test Lab of Fraunhofer SIT 2008. Since 2013 he is heading the department for Secure Software Engineering at Fraunhofer AISEC.