ABSTRACT
We start this chapter by introducing the concept of overcoming the challenges of making software secure through the use of a secure develop ment lifecycle (SDL). There will be further discussions of the models, methodologies, tools, human talent, and metrics for managing and overcoming the challenges to make software secure. We will close with a discussion of the mapping of our SDL with its associated best practices to a generic software development lifecycle (SDLC), which will be the subject of the next six chapters, followed by a chapter mapping our SDL best practices to several of the most popular software development methodologies.
