Chapter 12
Software Development Security
THE COMPTIA CYBERSECURITY ANALYST+ EXAM OBJECTIVES COVERED IN THIS CHAPTER INCLUDE:
- Domain 4: Security Architecture and Tool Sets
- ✓ 4.4 Given a scenario, use application security best practices while participating in the Software Development Life Cycle (SDLC).
Software ranging from customer-facing applications and services to smaller programs, down to the smallest custom scripts written to support business needs, is everywhere in our organizations. The process of designing, creating, supporting, and maintaining that software is known as the software development life cycle (SDLC). As a security practitioner, you need to understand the SLDC and its security implications to ensure that the software your organization uses is well written and secure throughout its lifespan.
In this chapter you will learn about major software development life cycle models and the reasons for choosing them, with examples that include the Waterfall and Spiral...