Secure Software Programming Practices and Development

Nitin Sukhija, Slippery Rock University of Pennsylvania
Webinar
ECP

The IDEAS Productivity project, in partnership with the DOE Computing Facilities of the ALCF, OLCF, and NERSC, and the DOE Exascale Computing Project (ECP), organizes the webinar series on Best Practices for HPC Software Developers.

As part of this series, we offer one-hour webinars on topics in scientific software development and high-performance computing, approximately once a month. The November webinar is titled Secure Software Programming Practices and Development; and will be presented by Nitin Sukhija (Slippery Rock University of Pennsylvania). The webinar will take place on Wednesday, December 13, 2023, at 1:00 pm ET.

Abstract:

In scientific software development design priorities such as cost, speed, convenience, open architecture, backwards compatibility, and others often trump security requirements. Moreover, this problem is compounded by an increased dependence on integration of a myriad of software packages and technologies along with an increased need for long-term sustainable software. Thus, incorporating secure software knowledge and practices into scientific software development is becoming increasingly critical to mitigate and to defend against malicious attacks that can cause extreme damage to any piece of software, compromising integrity, authentication, and availability. The webinar aims to address this issue by providing a comprehensive overview of the secure software development process and a thorough introduction to threat modeling and security assurance testing.