Description
Explore essential application security concepts as you study for the first domain in the Certified Secure Software Lifecycle Professional (CSSLP) exam: Secure Software Concepts.
Tags
Syllabus
Syllabus IntroductionBuilding secure softwareWhat you should knowThe goals of application security1. The CIA TriadConfidentialityIntegrityAvailability2. Identity and Access ManagementAuthenticationAuthorizationAccountabilityNonrepudiation3. Access ControlsLeast privilegeSeparation of dutiesEconomy of mechanismComplete mediation4. Design ConsiderationsDefense in depthResiliencyOpen designLeast common mechanismPsychological acceptabilityLeveraging existing componentsEliminate single point of failureDiversity of defenseConclusionNext steps
![](https://d3f1iyfxxz8i1e.cloudfront.net/courses/course_image/c5e8b07d95ce.jpeg)
CSSLP Cert Prep: 1 Secure Software Concepts
-
Provider