Video description
Presented by security ace David R. Miller, this course covers what you will need to know to pass the CISSP Domain 8 - Software Development Security exam. Domain 8 focuses on the challenges of securing software applications from malicious attack. The course starts with a look at the various types of applications and identifies the risks within their architecture.
It goes on to examine the software development life cycle, offering several highly recommended models for enhancing security during the phases of the life cycle and within the applications themselves. Specific risks, countermeasures, and controls are covered along with a description of the testing strategies used to ensure more secure applications.
- Learn what is required to pass Domain 8 of the 2015 CISSP Certification Course
- Understand the security risks inherent within the architecture of the different forms of applications
- Review the security dangers associated with the different SDLC methodologies
- Explore buffer overflow and injection risks, and how to protect against them
- Master the controls used to secure the computing environment and the SDLC
- Gain insight regarding the testing strategies used to secure software applications
Publisher resources
Table of contents
- Application Architecture
-
The Software Development Lifecycle And Related Development Models
- The Software Development Lifecycle 00:09:08
- CMM, SDL, And OWASP 00:09:55
- Waterfall, Spiral, And Prototyping 00:07:38
- Agile Development Platforms And DevOps 00:07:45
-
Risks Within Software
- Risks Within Software 00:12:15
- Buffer Overflow And Injection 00:10:18
-
Controls To Secure Software Development
- Development Environment, Version Control, And Security Controls 00:08:00
- Stack Canary, NX Memory, And Garbage Collection 00:08:25
- Sandboxing 00:07:25
- Input, Process, And Output Controls 00:09:14
- Software Development Controls Summary 00:08:16
-
Testing Software
- Code And Software Testing 00:07:58
- Web Application Testing 00:09:18
-
Wrap Up
- Wrap Up 00:05:09
Product information
- Title: CISSP Certification Training: Domain 8
- Author(s):
- Release date: July 2016
- Publisher(s): Infinite Skills
- ISBN: 9781491966020
You might also like
video
CISSP Video Course
The fast, powerful way to prepare for your CISSP exam! 30+ hours of personal video training …
book
CISSP® Practice: 2,250 Questions, Answers, and Explanations for Passing the Test
A must-have prep guide for taking the CISSP certification exam If practice does, indeed, make perfect, …
book
Official (ISC)2 Guide to the CISSP CBK, 4th Edition
As a result of a rigorous, methodical process that (ISC) follows to routinely update its credential …
book
The Official (ISC)2 Guide to the CISSP CBK Reference, 5th Edition
The only official, comprehensive reference guide to the CISSP All new for 2019 and beyond, this …