Google, Twitter, RSA, McAfee, Harvard University, the University of Washington and seven other organizations have banded together to create a new organizations called the IEEE Computer Society Center for Secure Design (CSD). They aim to educate developers about best practices for secure software design.
The group says that half of security vulnerabilities are due to code problems and half are due to design problems. It has already released a report with its top ten recommendations related to software design. “By putting focus on security design and not just focusing on implementation bugs in code, the CSD does even the most advanced companies in the space a huge service,” Twitter’s Neil Daswani said.