June 30, 2006
Benchmarking generally refers to the process of ranking or scoring security against an established standard measure. Benchmarks can be absolute or cross-sectional.
Comparative Application Security #
- The Security of Applications: Not All Are Created Equal (February 2002), Andrew Jaquith. This study examples the security practices of 45 web applications, and finds that the most secure e-business applications have one-quarter as many security defects as the worst – and eighty percent less risk.
Benchmarking Goodness Criteria #
Established by the DBench Project.
Contributed by Sami Saydjari