3. Develop a list of five security-related issues to be put into a requirements

Question

3.   Develop a list of five security-related issues to be put into a requirements document as part of a secure coding initiative.
4.   Choose two requirements from the previous question and describe use cases that would validate them in the testing phase.
5.   You have been asked by your manager to develop a worksheet for code walk throughs, another name for structured code reviews. This worksheet should include a list of common errors to look for during the examination, acting as a memory aid. You want to leave a lasting impression on the team as a new college grad. Outline what you would include on the worksheet related to security.

Explanation / Answer

3)

Ans)
The Answer for your question is given below as you asked for the list of five security-related issues to be put into a requirements document as part of a secure coding initiative are given below clearly.

1 .the first security related issue is validating the input.

2. the second security related issue is compiler warnings.

3. the Third security related issue is Keeping the design simple.

4. the fourth security related issue is adopting a secure coding standard.

5. the fifth security related issue is to use very good quality assurance techniques.

6. so above are the list of five security-related issues to be put into a requirements document as part of a secure coding initiative

4)
Ans)
The two requirements from the previous question i would like to take and describe then is

1. adopting a secure coding standard.
2. validating the input

1. adopting a secure coding standard:
So when we develop a code then we have to apply a very secure coding standard for your development language and platform. And also we should check whether we use proper coding standard or not because when our code is validated in testing phase then if we dont follow the secure coding standards then our code may fail the test cases, so we have to be very careful and choose the proper coding standards.

2. Validating input:
We have to Validate the input by giving necessary and valid inputs first and then again we have to check with different wrong iputs also and by validating the input we can reduce the software vulnerabilities. and when our code goes to the testing phase there also our code will be validated with different inputs.

5)
Ans)
when my manager gives some work to me like to develop a worksheet for code walk throughs and structured code reviews then my outline is

I will include all the necessary fields that are required to check the structure of the code.
1. the first one i will consider is i will check the coding standards and the next one is i will validate the code with different test cases and the third one is i will check for the compile time errors and also rutime errors etc and final one i will include is architecture and design of the code so this is my outline.

Hope This Helps, if you have any doubts Please comment i will get back to you, thank you and please thumbs up

Related Questions

Navigate

• Browse (All)
• Browse 3
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.