Chapter 11

Summarizing Secure Application Development, Deployment, and Automation Concepts

This chapter covers the following topics related to Objective 2.3 (Summarize secure application development, deployment, and automation concepts) of the CompTIA Security+ SY0-601 certification exam:

  • Environment

    • Development

    • Test

    • Staging

    • Production

    • Quality assurance (QA)

  • Provisioning and deprovisioning

  • Integrity measurement

  • Secure coding techniques

    • Normalization

    • Stored procedures

    • Obfuscation/camouflage

    • Code reuse/dead code

    • Server-side vs. client-side execution and validation

    • Memory management

    • Use of third-party libraries and software development kits (SDKs)

    • Data exposure

  • Open Web Application Security Project (OWASP)

  • Software diversity

    • Compiler

    • Binary ...

Get CompTIA Security+ SY0-601 Cert Guide, 5th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.