Michael Howard, senior Security Program Manager at Microsoft, writes a list of habits any developer must have in order to get a final, secure and efficent product. The list goes as follows:
Habit #1: Take Responsibility
Habit #2: Never Trust Data
Habit #3: Model Threats against Your Code
Habit #4: Stay One Step Ahead
Habit #5: Fuzz!
Habit #6: Don’t Write Insecure Code
Habit #7: Recognize the Strategic Asymmetry
Habit #8: Use the Best Tools You Can
Details for every habit can be found here: 8 Simple Rules For Developing More Secure Code.
I couldn’t agree more…