1. Software Vulnerabilities

Syllabus Points Covered

Secure software architecture

Designing software

• Describe the benefits of developing secure software

  • data protection

  • minimising cyber attacks and vulnerabilities

Developing secure code

• Explore fundamental software design security concepts when developing programming code

  • confidentiality

  • integrity

  • availability

  • authentication

  • authorisation

  • accountability

• Apply security features incorporated into software including data protection, security, privacy and regulatory compliance

  • audit logs

  • privacy settings

  • consent records

  • breach reporting processes

Impact of safe and secure software development

• Apply and describe the benefits of collaboration to develop safe and secure software

  • considering various points of view

  • delegating tasks based on expertise

  • quality of the solution

• Investigate and explain the benefits to an enterprise of the implementation of safe and secure development practices

  • improved products or services

  • influence on future software development

  • improved work practices

  • productivity

  • business interactivity

• Evaluate the social, ethical and legal issues and ramifications that affect people and enterprises resulting from the development and implementation of safe and secure software

  • employment

  • data security

  • privacy

  • copyright

  • intellectual property

  • digital disruption

Chapter Contents

• 1.1. Introduction
  • 1.1.1. Types of Vulnerabilities
  • 1.1.2. Why Do We Care?
  • 1.1.3. Next Steps
  • 1.1.4. Glossary
• 1.2. Security Principles
  • 1.2.1. The Key Principles
  • 1.2.2. Glossary
• 1.3. Benefits of Secure Software
  • 1.3.1. Data Protection Benefits
  • 1.3.2. Minimising Cyber Attacks and Vulnerabilities
  • 1.3.3. Glossary
• 1.4. Commercial Benefits of Secure Software
  • 1.4.1. Examples of Benefits
• 1.5. Impact on Society
  • 1.5.1. Social Issues
  • 1.5.2. Ethical Issues
  • 1.5.3. Legal Issues