Secure Coding and Software Vulnerabilities in Implementation Phase of Software Development
| Autor: | Mehak Khurana |
|---|---|
| Rok vydání: | 2022 |
| Zdroj: | ECS Transactions. 107:7037-7045 |
| ISSN: | 1938-6737 1938-5862 |
| DOI: | 10.1149/10701.7037ecst |
| Popis: | The methodology in software development has shifted from waterfall to agile, which has earned appreciation as cost-effective development due to its speedy software delivery, under limited time constraints. At the same time, cyber attacks have become more surreptitious that are pretending threats to software. Security elements and practices in software development phases eliminate software vulnerabilities. Vulnerabilities happen in the software due to the unavailability of security practices during the levels of software enhancement. Software development using secure coding practices can resist the software from exploitation. Thus, the paper focuses on the detailed view of security weaknesses in the implementation stage of the software development life cycle (SDLC). The paper explains the non-compliant codes which expose vulnerabilities that can benefit the attackers to gain unauthorized access, therefore providing the mitigation to furnish a complaint code resistant to exposure. Both secure and vulnerable features can be curved from the source code. This paper concentrates on the human aspects of software security, including human actions and motivation. This paper enables us to learn about and promote secure coding standards for frequently used programming languages, regardless of the device used for programming. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|