Free courses from frontend to fullstack and AI
Master Production-Ready Machine Learning, Step by Step
Overview
Build a Learning Habit
Download Class Central's free printable study calendar
Download for Free
Discover how to approach information security from the perspective of a federal auditor in this 37-minute conference talk from AppSecUSA 2017. Explore the comprehensive security standards published by independent federal government agencies, including the Federal Information Processing Standard (FIPS) 140-2 and the National Information Assurance Directive (NIAP). Learn about five crucial security principles derived from these standards: defining security boundaries, creating functional specifications, protecting critical security parameters, securing network traffic, and proving cryptographic stack strength. Gain insights into implementing these practices in industry settings and understand how to improve security throughout development, reducing risk for both customers and companies.
Syllabus
How To Approach InfoSec Like a Fed(eral Auditor) - AppSecUSA 2017
Taught by
OWASP Foundation