{"id":11457,"date":"2023-05-16T15:31:10","date_gmt":"2023-05-16T13:31:10","guid":{"rendered":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/?p=11457"},"modified":"2024-11-01T06:48:08","modified_gmt":"2024-11-01T04:48:08","slug":"manifesto-for-secure-software-development","status":"publish","type":"post","link":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/blog\/device-security\/manifesto-for-secure-software-development\/","title":{"rendered":"Manifesto for Secure Software Development"},"content":{"rendered":"\n<p class=\"article-lead\"><\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1600\" height=\"840\" data-src=\"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-content\/uploads\/2023\/05\/20230516_BlogPictureManifesto.jpg\" alt=\"\" class=\"wp-image-11458 lazyload\" data-srcset=\"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-content\/uploads\/2023\/05\/20230516_BlogPictureManifesto.jpg 1600w, https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-content\/uploads\/2023\/05\/20230516_BlogPictureManifesto-300x158.jpg 300w, https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-content\/uploads\/2023\/05\/20230516_BlogPictureManifesto-768x403.jpg 768w, https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-content\/uploads\/2023\/05\/20230516_BlogPictureManifesto-1536x806.jpg 1536w, https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-content\/uploads\/2023\/05\/20230516_BlogPictureManifesto-1200x630.jpg 1200w\" data-sizes=\"(max-width: 1600px) 100vw, 1600px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1600px; --smush-placeholder-aspect-ratio: 1600\/840;\" \/><\/figure>\n\n\n\n<p>From the very beginning, Proekspert has kept safety, security and precision in the sharpest focus. Since security is becoming more and more important, the Estonian Association of Information Technology and Telecommunications (ITL) has initiated a secure software development manifesto.&nbsp;<\/p>\n\n\n\n<p>For decades we\u2019ve developed software to different sectors &#8211; ranging from banking to IoT. Therefore terms like OWASP, PCI DSS, ISO13849-1 PLd and SIL 2 are not unknown for us. Being an active member of ITL, it sounded logical to sign and join with the&nbsp;secure software development manifesto.&nbsp;<\/p>\n\n\n\n<p>In every software development project, Proekspert leverages the following principles:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Security by design &#8211; implementing best security practices of respective development framework\/design patterns<\/li>\n\n\n\n<li>Privacy by design &#8211; all&nbsp;personal data is adequately protected<\/li>\n\n\n\n<li>Compliance &#8211; developed solution adheres to industry specific security standards<\/li>\n\n\n\n<li>Confidentiality &#8211; software developed during the project is stored in secure repositories, no&nbsp;proprietary or confidential information is exposed to external parties, including modern AI tools<\/li>\n\n\n\n<li>Risk awareness &#8211; deep discussion and explaining of potential security risks with customer<\/li>\n<\/ul>\n\n\n\n<p>The Estonian Association of Information Technology and Telecommunications (ITL) wanted&nbsp;to take on a greater role and responsibility in secure software development in Estonia and has created <strong>a manifesto, <\/strong><strong><em>The Good Practice of Secure Software Development<\/em><\/strong>. They state: \u201cAt a time when digitization has become the norm in almost every field, it is necessary to pay serious attention to the security of the digital space.\u201d<\/p>\n\n\n\n<p>\u201cWe are very grateful to ITL for the initiation, raising the issue, and creating this manifesto. We hope many software development companies in Estonia will join this movement and secure software development will be standard practice in Estonia,\u201d says Proekspert`s CEO<strong> <a href=\"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/blog\/proekspert-news\/welcome-triin-sepp-our-new-ceo\/\" data-type=\"URL\" data-id=\"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/blog\/proekspert-news\/welcome-triin-sepp-our-new-ceo\/\">Triin Sepp<\/a>.<\/strong><\/p>\n\n\n\n<p>Read more here: <a href=\"https:\/\/itl.ee\/en\/manifesto-for-secure-software-development\/\" target=\"_blank\" rel=\"noreferrer noopener\">Manifesto for secure software development | Estonian Association of Information Technology and Telecommunications (itl.ee)<\/a><\/p>\n\n\n\n<p>Estonian page: <a href=\"https:\/\/itl.ee\/uudised\/itlis-allkirjastati-turvalise-tarkvara-arendamise-manifest\/\" target=\"_blank\" rel=\"noreferrer noopener\">ITLis allkirjastati turvalise tarkvara arendamise manifest | Eesti Infotehnoloogia ja Telekommunikatsiooni Liit<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>From the very beginning, Proekspert has kept safety, security and precision in the sharpest focus. Since security is becoming more and more important, the Estonian Association of Information Technology and Telecommunications (ITL) has initiated a secure software development manifesto.&nbsp; For decades we\u2019ve developed software to different sectors &#8211; ranging from banking to IoT. Therefore terms like OWASP, PCI DSS, ISO13849-1 PLd and SIL 2 are not unknown for us. Being an active member of ITL, it sounded logical to sign and join with the&nbsp;secure software development manifesto.&nbsp; In every software development project, Proekspert leverages the following principles: The Estonian Association of Information Technology and Telecommunications (ITL) wanted&nbsp;to take on a greater role and responsibility in secure software development in Estonia and has created a manifesto, The Good Practice of Secure Software Development. They state: \u201cAt a time when digitization has become the norm in almost every field, it is necessary to pay serious attention to the security of the digital space.\u201d \u201cWe are very grateful to ITL for the initiation, raising the issue, and creating this manifesto. We hope many software development companies in Estonia will join this movement and secure software development will be standard practice in Estonia,\u201d says<\/p>\n","protected":false},"author":5,"featured_media":11458,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5],"tags":[],"class_list":["post-11457","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-device-security"],"acf":[],"_links":{"self":[{"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/posts\/11457","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/comments?post=11457"}],"version-history":[{"count":8,"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/posts\/11457\/revisions"}],"predecessor-version":[{"id":14712,"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/posts\/11457\/revisions\/14712"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/media\/11458"}],"wp:attachment":[{"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/media?parent=11457"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/categories?post=11457"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/clients.triloogia.ee\/proekspert\/wp-new\/wp-json\/wp\/v2\/tags?post=11457"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}