Learn about the need to embrace industry best practices and how to create your own for your team.
- Security is often a moving target.…When you are starting down this path of secure coding,…and ultimately, a culture of security,…it's easy to get lost.…I'm going to suggest you focus…on the most current best practices.…Consider development tasks like source control,…unit testing, static and dynamic code analysis,…and peer-reviewed best practices…to help secure your code.…Don't be afraid to attack them one at a time…and get processes in place that work for you.…
You don't, however, have to re-create the wheel.…There are several great resources on the web for free…that will help you build a platform of secure development.…Requirements and design are no different.…A lot of time and effort has been put…into developing secure practices around these tasks.…Again, many of them are published for free.…Consider risk management as one of the bigger areas here,…and focus on how the industry is managing risks…and documenting them.…
While not everything will work for you,…you may find enough to get you started,…and ultimately, save you some valuable time.…
AuthorFrank P Moley III
- Understanding attackers and risks
- Documenting your risks
- Issues related to web client–server interactions
- Issues related to thick app and client–server interactions
- Authorization and cryptography issues
- Implementing security in each phase of the software development life cycle
Skill Level Beginner
Web Security: OAuth and OpenID Connectwith Keith Casey1h 26m Intermediate
Programming Foundations: Design Patternswith Elisabeth Robson2h 19m Intermediate
What you need to know1m 35s
1. Security and Risk Overview
2. Web Client Server Interaction Code Issues
3. Thick App and Client-Server Interaction Issues
4. Crypto and Security Misuse Issues
5. Security in the SDLC
Next steps2m 10s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.