Software Development Life Cycle (SDLC): A structured process that enables the production of software
What are the 8 phases of the Software Development Lifecycle (SDLC)?: plan- ning
requirements design implementation testing deployment maintenance end of life
SDLC Phase 1: planning - a vision and...
D487 - SECURE SOFTWARE DESIGN 2024 VERIFIED
QUESTIONS AND ANSWERS 100% CORRECT
Software Development Life Cycle (SDLC): A structured process that enablesthe
production of software
What are the 8 phases of the Software Development Lifecycle (SDLC)?: plan-ning
requirements design implementation testing deployment maintenance end of life
SDLC Phase 1: planning - a vision and next steps are created
SDLC Phase 2: requirements - necessary software requirements are determined
SDLC Phase 3: design - requirements are prepared for the technical design
SDLC Phase 4: implementation - the resources involved in the application froma known
resource are determined
SDLC Phase 5: testing - software is tested to verify its functions through a known
environment
SDLC Phase 6: deployment - security is pushed out
SDLC Phase 7: maintenance - ongoing security monitoring is implemented
SDLC Phase 8: end of life - the proper steps for removing software completelyare
considered
Security Development Life Cycle (SDL): A process that standardizes securitybest
practices
Secure Code: A principle design in coding that refers to code security bestpractices,
safeguards, and protection against vulnerabilities
Threat Modeling: A structured process to protect against vulnerabilities
process to pinpoint security threats and potential vulnerabilities that will help priori-tize
remediation
Application Security: developing, adding, and testing security features to pre-vent
vulnerabilities within applications
Building Security in Maturing Model (BSIMM): a study of real-world softwaresecurity
that allows you to develop your software security over time
OWASP Software Assurance Maturity Model (SAMM): flexible framework forbuilding
, D487 - SECURE SOFTWARE DESIGN 2024 VERIFIED
QUESTIONS AND ANSWERS 100% CORRECT
security into a software development organization
Open Web Application Security Project (OWASP): A flexible and prospectiveframewor
to build security into your software development organization for web applications
Static Analysis: the analysis of computer software that is performed withoutexecuting
programs
Dynamic Analysis: the analysis of computer software that is performed whenexecuting
programs on a real or virtual processor in real time
Fuzz Testing: automated or semi-automated testing that provides invalid, unex-pected, or
random data to the computer software program
National Institute of Standards and Technology (NIST): provides research,
information, and tools for government and corporate information security
Measurement Model: A set of data security methods that developers take toprotect
against vulnerabilities
Metric Model: Allows an organization to determine the effectiveness of itssecurity controls
Waterfall Development: software development methodology that breaks down
development activities into linear sequential phases; each phase depends on the
deliverables of the previous one and corresponds to a specialization of tasks
Waterfall Phases (typical): plan -> build -> test -> review -> deploy
Iterative Waterfall Development: each phase of a project is broken down intoits own
waterfall phases
Agile Development: software development methodology that delivers function-ality in
rapid iterations called timeboxes, requiring limited planning but frequent communication.
Mizes traditional and new software development practices.
Scrum: framework for Agile that prescribes for teams to break work into goalsto be
completed within sprints
flexible, holistic product development strategy where a development team works asa unit to
Les avantages d'acheter des résumés chez Stuvia:
Qualité garantie par les avis des clients
Les clients de Stuvia ont évalués plus de 700 000 résumés. C'est comme ça que vous savez que vous achetez les meilleurs documents.
L’achat facile et rapide
Vous pouvez payer rapidement avec iDeal, carte de crédit ou Stuvia-crédit pour les résumés. Il n'y a pas d'adhésion nécessaire.
Focus sur l’essentiel
Vos camarades écrivent eux-mêmes les notes d’étude, c’est pourquoi les documents sont toujours fiables et à jour. Cela garantit que vous arrivez rapidement au coeur du matériel.
Foire aux questions
Qu'est-ce que j'obtiens en achetant ce document ?
Vous obtenez un PDF, disponible immédiatement après votre achat. Le document acheté est accessible à tout moment, n'importe où et indéfiniment via votre profil.
Garantie de remboursement : comment ça marche ?
Notre garantie de satisfaction garantit que vous trouverez toujours un document d'étude qui vous convient. Vous remplissez un formulaire et notre équipe du service client s'occupe du reste.
Auprès de qui est-ce que j'achète ce résumé ?
Stuvia est une place de marché. Alors, vous n'achetez donc pas ce document chez nous, mais auprès du vendeur ACELEARNERS. Stuvia facilite les paiements au vendeur.
Est-ce que j'aurai un abonnement?
Non, vous n'achetez ce résumé que pour €17,67. Vous n'êtes lié à rien après votre achat.
