From the course: Developing Secure Software (2015)
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Security patterns
- Security patterns are well-known secure design solutions to recurring software security problems. There are two types of security patterns. The first type is design patterns for security, providing software security countermeasures at the detailed design level. The second type is architectural patterns for security, offering secure software architectures. When applied consistently throughout the entire software system, a design pattern becomes an architectural pattern. For example, an input validation design solution such as intercepting validator, is a design pattern when used individually by only a small subset of developers without an overarching strategy or vision of how it will be implemented across the entire software project. This ad hoc adoption of design patterns for security without an architectural vision or philosophy is dangerous, especially because the effectiveness of the individual implementation cannot be verified objectively and timely. In addition, duplicate…
Contents
-
-
-
-
-
Introduction to secure design1m 31s
-
(Locked)
Security tactics1m 21s
-
(Locked)
Security patterns1m 38s
-
(Locked)
Security vulnerabilities2m 1s
-
(Locked)
Architectural analysis for security2m
-
(Locked)
Case study: Setting the Stage33s
-
(Locked)
Case study: Tactic-Oriented Architectural Analysis1m 36s
-
(Locked)
Case study: Pattern-Oriented Architectural Analysis2m 33s
-
(Locked)
Case study: Vulnerability-Oriented Architectural Analysis1m 44s
-
(Locked)
Software security anti-patterns2m 7s
-
-
-
-
-