Chapter 10

Software Development Security


check Applying security throughout the software development lifecycle

check Enforcing security controls

check Protecting development environments

check Assessing software security

check Reducing risk by applying safe coding practices

check Sizing up the security impact of off-the-shelf software

You must understand the principles of software security controls, software development, and software vulnerabilities. Software and data are the foundation of information processing; software can’t exist apart from software development. An understanding of the software development process is essential for the creation and maintenance of software that’s appropriate, reliable, and secure. This domain represents 10 percent of the CISSP certification exam.

Understand and Integrate Security in the Software Development Lifecycle

The software development lifecycle (SDLC, also ...

Get CISSP For Dummies, 6th Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.