From the course: CISSP Cert Prep (2021): 8 Software Development Security
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Code signing
From the course: CISSP Cert Prep (2021): 8 Software Development Security
Code signing
- [Instructor] Code signing provides a way for developers to demonstrate to end users that applications come from a legitimate source. You may already know from your knowledge of cryptography that individuals may apply digital signatures to data to provide non-repudiation. Anyone wishing to verify a digital signature may do so by using the signer's digital certificate. Digital signatures may also be used for code signing. Users may obtain software from a wide variety of sources. It may be pre-installed on their computer by their IT department. They might download software from an app store or find it on a website. Code signing attempts to help users determine whether code is legitimate using digital signatures. Developers who wish to sign their code obtain a digital certificate from a trusted certificate authority. They then use the private key associated with that digital certificate to create a digital signature before…
Contents
-
-
-
-
-
-
Input validation2m 37s
-
(Locked)
Parameterized queries3m
-
(Locked)
Authentication/session management issues1m 49s
-
(Locked)
Output encoding3m 13s
-
(Locked)
Error and exception handling3m
-
(Locked)
Code signing2m 8s
-
(Locked)
Database security3m 53s
-
(Locked)
Data deidentification2m 44s
-
(Locked)
Data obfuscation2m 12s
-
-
-