Best Practices: ProveIT Case Study for the U.S. Air Force Software Assurance Center of Excellence

Fortify • July 13, 2010

This case study examines a U.S. Air Force initiative to implement application security and software assurance practices following the massive breach of an Air Force information system.

The Air Force began realizing that it had been losing unknown quantities of data and information. Like the rest of the federal government, the Air Force was increasingly creating or acquiring Web-based systems or bolting on Web interfaces to legacy systems to open them up to outside systems and users - as well as threats and actual attacks.

This case study discusses:

The approach taken by the Air Force in creating the Application Software Assurance Center of Excellence(ASACoE);
Its approach to implementing software security;
Defending critical government systems against threats and data loss

Previous
Ultra Secure Government ID Cards

Next
US Military Prevents Zero Day Attack with Application Whitelisting

You might also be interested in …

Forging Operational Resilience

Forging Operational Resilience

Cyber Recovery Solution: Get Back to Business. Faster

Why Improved Recovery From Cyber Incidents Is Critical

Why Improved Recovery From Cyber Incidents Is Critical

OnDemand Panel Discussion | Partnering to Achieve Zero Trust Maturity

OnDemand Panel Discussion | Partnering to Achieve Zero Trust Maturity

2022 Ponemon Cost of Insider Threats Global Report

2022 Ponemon Cost of Insider Threats Global Report

The Top 10 Biggest and Boldest Insider Threat Incidents, 2020-2021

The Top 10 Biggest and Boldest Insider Threat Incidents, 2020-2021

Modern Blueprint to Insider Threat Management

Modern Blueprint to Insider Threat Management

How to Stop Data from Leaving with Employees

How to Stop Data from Leaving with Employees

Buyers Guide to Identity and Access Management Solutions in a Zero Trust Era

Buyers Guide to Identity and Access Management Solutions in a Zero Trust Era

Around the Network

Examining What Went Wrong for Optus

Examining What Went Wrong for Optus

The Ransomware Files, Episode 11: The Adult Boutique

The Ransomware Files, Episode 11: The Adult Boutique

EvilProxy Bypasses MFA by Capturing Session Cookies

EvilProxy Bypasses MFA by Capturing Session Cookies

Analyzing Twitter's Security Nightmare

Analyzing Twitter's Security Nightmare

Protecting Industrial Security When Uptime Is Essential

Protecting Industrial Security When Uptime Is Essential

It's 2022. Do You Know Where Your Old Hard Drives Are?

It's 2022. Do You Know Where Your Old Hard Drives Are?

Vulnerabilities Identified in Baxter Infusion Pump Devices

Vulnerabilities Identified in Baxter Infusion Pump Devices

Cybersecurity & Threat Modeling: Automated vs. Manual

Cybersecurity & Threat Modeling: Automated vs. Manual

Behind Agency Doors: Where Is Security Progress Being Made?

Behind Agency Doors: Where Is Security Progress Being Made?

Cyberwar: Assessing the Geopolitical Playing Field

Cyberwar: Assessing the Geopolitical Playing Field

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.