Abstract
As the need to build robust software security features grows, companies are realizing building security isn't their core competency. As a result, some turn to open source security code to augment their development efforts. While open source security code may be obtained for free, there are significant development costs incurred throughout the entire software development cycle that could have been avoided by using commercial software. By viewing security as a subset of quality, the justification for investing in design reviews, strong implementation practices, robust testing, and professionally supported components becomes clear. |
