Software Development and Security
You learned earlier in this chapter about the importance of developing secure software and that software development requires special attention from a security perspective. Applications represent the most common avenue for users, customers, and attackers to access data, which means you must build the software to enforce the security policy and to ensure compliance with regulations, including the privacy and integrity of both data and system processes. Regardless of the development model an organization adopts, the application must properly perform the following tasks:
Checks user authentication to the application
Checks user authorization (privilege level)
Has procedures for recovering database integrity in ...
Get Fundamentals of Information Systems Security, 4th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
