The Air Force began realizing that it had been losing unknown quantities of data and information. Like the rest of the federal government, the Air Force was increasingly creating or acquiring Web-based systems or bolting on Web interfaces to legacy systems to open them up to outside systems and users - as well as threats and actual attacks.
This case study discusses:
- The approach taken by the Air Force in creating the Application Software Assurance Center of Excellence(ASACoE);
- Its approach to implementing software security;
- Defending critical government systems against threats and data loss