Carnegie Mellon University cmu-wordmark

Secure Software Development Life Cycle Processes: A Technology Scouting Report

Technical Note
By
The purpose of this 2005 technical note is to present overview information about existing processes, standards, life cycle models, frameworks, and methodologies that support or could support secure software development.
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2005-TN-024
DOI (Digital Object Identifier)
10.1184/R1/6583649.v1
Topic or Tag

Abstract

As the use of the Internet and networked systems become more pervasive, the importance of developing secure software increases. The purpose of this technical note is to present overview information about existing processes, standards, life cycle models, frameworks, and methodologies that support or could support secure software development. Where applicable and possible, some evaluation or judgment is provided. 

The target audience for this technical note includes software engineering process group (SEPG) members, software developers, and managers seeking information about existing software development life cycle (SDLC) processes that address security.

SHARE
Download PDF
Cite This Technical Note

Davis, N. (2005, December 1). Secure Software Development Life Cycle Processes: A Technology Scouting Report. (Technical Note CMU/SEI-2005-TN-024). Retrieved June 19, 2026, from https://doi.org/10.1184/R1/6583649.v1.

@techreport{davis_2005,
author={Davis, Noopur},
title={Secure Software Development Life Cycle Processes: A Technology Scouting Report},
month={Dec},
year={2005},
number={{CMU/SEI-2005-TN-024},
institution={Software Engineering Institute, Carnegie Mellon University},
doi={10.1184/R1/6583649.v1},
url={https://doi.org/10.1184/R1/6583649.v1},
note={Accessed: 2026-Jun-19}
}

Davis, Noopur. "Secure Software Development Life Cycle Processes: A Technology Scouting Report." (CMU/SEI-2005-TN-024). Software Engineering Institute, Carnegie Mellon University. Software Engineering Institute, December 1, 2005. https://doi.org/10.1184/R1/6583649.v1.

N. Davis, "Secure Software Development Life Cycle Processes: A Technology Scouting Report," Software Engineering Institute, Carnegie Mellon University. Software Engineering Institute, Technical Note CMU/SEI-2005-TN-024, 1-Dec-2005 [Online]. Available: https://doi.org/10.1184/R1/6583649.v1. [Accessed: 19-Jun-2026].

Davis, Noopur. "Secure Software Development Life Cycle Processes: A Technology Scouting Report." (Technical Note CMU/SEI-2005-TN-024). Software Engineering Institute, Carnegie Mellon University, Software Engineering Institute, 1 Dec. 2005. https://doi.org/10.1184/R1/6583649.v1. Accessed 19 Jun. 2026.

Davis, Noopur. Secure Software Development Life Cycle Processes: A Technology Scouting Report. CMU/SEI-2005-TN-024. Software Engineering Institute. 2005. DOI: 10.1184/R1/6583649.v1. https://doi.org/10.1184/R1/6583649.v1

Ask a question about this Technical Note