The International Secure Systems Development Conference
Getting Started in Building Security In
The International Secure Systems Development Conference addresses the key issues around designing-in security for standard and web-based software and systems, both in terms of developing new applications securely and also in adding security to legacy applications. The aim of the event is to help change the balance away from a repeated and ever more costly focus on securing ever more insecure infrastructures, to one which focuses on the creation of inherently secure systems through the introduction of verifiable, secure development methodologies and coherent security architectures.
Book now to take advantage of our special early bird rate
Background
Whilst external threats (and internal subversions) continue to grab the IT Security headlines there is an increasing realisation amongst experts that the vast majority of today’s vulnerabilities can in fact be tracked back to shortcomings in application coding, architecture and design which lave left many business-critical applications simply unable to function as parts of today's pervasive security and authentication architectures.
The most common response has been to spend large sums on bolt-on security solutions to patch up the holes and vulnerabilities created by bad coding and non-coherent design. This has seen bigger, better and ever more costly hardware and software products coming to market, but often using the same bad coding practices that created the first set of vulnerabilities in the applications they are meant to protect.
As the inherent shortcomings of this "patch and fix" culture start to be recognised, many forward thinking security experts are coming to realise that the vast majority of today’s vulnerabilities can only be addressed by recognising and addressing systemic shortcomings in the processes of application design and application coding.
The ISSD Conference aims to bring together the leading experts and practitioners in this fast emerging field, including those who are seeking to "design-in" security at the initial coding stages for both security and business applications, and also those attempting to create wrap-around security architectures for their legacy business and web-based applications to allow their existing systems to operate within the framework of a modern policy-driven business-wide security architecture.
The 2-day event will feature input from Policy-makers, Technical Experts, End Users and Practitioners and will cover both Manegerial/Strategic and Technical/Implementation areas to help delegates understand the benefits of "designing security in" as well as giving them the tools and expertise to allow them to implement secure coding, architecture and design best practices within their own organisations.
