Secure SDLC || Secure Software Development Life Cycle|| SSDLC in Information Security
ฝัง
- เผยแพร่เมื่อ 27 เม.ย. 2020
- Secure SDLC. Software Development Life cycle. It is a systematic process for building software that ensures the quality and correctness of the software built. SDLC process aims to produce high-quality software which meets customer expectations. SDLC consists of a detailed steps which explains how to plan, build and maintain specific software. Every phase of the SDLC lifecycle has its own process and deliverables that feed into the next phase.Secure SDLC can be adapted to support implementation of an information security project. Implementing information security involves identifying specific threats and creating specific controls to handle those threats. The Secure SDLC unifies this process and makes it a coherent program rather than a series of random, unconnected actions. There are six phases is Secure SDLC.
1. Investigation
2.Analysis
3. Logical Design
4. Physical Design
5. Implementation
6. Maintenance and Change
Investigation
This phase begins with a directive from upper management, dictating the process and goals of the project as well as its budget and other constraints.
Analysis
In this phase, the documents from the investigation phase are studied.
Logical Design
This phase creates and develops the blueprints for information security and implements key security policies.
Physical Design
This phase evaluates the information security technology required to support the blueprint outlined in the logical design phase and generates alternative solutions and fix the final design.
Implementation
Implementing Secure SDLC is same like traditional SDLC. The security solutions are acquired, tested, implemented and tested again.
Maintenance and Changes
This is the most important phase because today’s information security systems need constant monitoring, testing, modification, updating and repairing. - วิทยาศาสตร์และเทคโนโลยี
