Fluid Attacks Database

BSIMM

Last updated: 2024/02/02

The Building Security In Maturity Model is a data-driven model developed through rigorous analysis of software security initiatives (SSIs), also known as application/product security programs. The version used in this section is BSIMM14.

Control-Requirement Mapping

Definition	Requirements
CR3_4:_3. Automate malicious code detection	155. Application free of malicious code 273. Define a fixed security suite
SE3_2:_18. Use code protection	159. Obfuscate code
SR1_5:_101. Identify open source	262. Verify third-party components
SR3_3:_19. Use secure coding standards	062. Define standard configurations

Free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.