search cancel

CA Secure Software Development Lifecycle (CA SSDLC)

book

Article ID: 238970

calendar_today

Updated On:

Products

DX NetOps CA Spectrum CA Virtual Network Assurance CA Network Flow Analysis (NetQos / NFA) CA Mediation Manager AppNeta CA Performance Management - Usage and Administration

Issue/Introduction

How does CA/Broadcom build and ensure secure software?

What DAST, SAST processes are used?  

Resolution

The CA Secure Software Development Lifecycle (CA SSDLC) and security-related best practices described in the documents below are implemented to build more secure software and address security requirements throughout the product development cycle. Key aspects described below include education, architectural risk assessment, code analysis, penetration testing, and continuous tracking of known vulnerabilities and attack vectors.

Please see:

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/security-advisories/CA-Technologies-Secure-Software-Development-Lifecycle-SSDLC/1788

Frequently Asked Questions and guidance for the secure development processes of the Agile Operations Division

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/20484