In May 2023, the Open Source Foundation for Application Security (OWASP) introduced SwSec 5D, a five-dimensional secure software development maturity reference framework. This framework serves as a valuable guide for enhancing security in the software supply chain by outlining the necessary steps for secure software development.
Matteo Meucci, the CEO of IMQ Minded Security, leads the OWASP SwSec 5D project. IMQ Minded Security is a consulting firm specializing in Software Development Life Cycle (SDLC). Meucci has been actively involved with OWASP since 2002.
The five-dimensional approach to SDLC was originally conceptualized by IMQ Minded Security, subsequently donated to OWASP in 2018, and further refined by OWASP before its release.