About SAMM

SAMM is the Software Assurance Maturity Model: a prescriptive, community-driven framework for measuring and improving an organization’s software security posture. Start with an overview or meet the people behind the project.

Start here

Get oriented with the model and the people behind it

What is SAMM

An overview of the Software Assurance Maturity Model: mission, structure, and how organizations use it.

The team

The volunteers and contributors who maintain SAMM, shape the roadmap, and run the community.

References

Background, terminology, and version history

FAQ

Answers to the questions we hear most often about adopting and interpreting SAMM.

Mapping versions 1.5 to 2.0

How practices and activities map between the 1.5 and 2.0 editions of the model.

Version 1.5

Archived materials for the previous major version of the model.

Acronyms and abbreviations

A glossary of the terms and abbreviations used across the SAMM model and documentation.