Secure Staging Environment Design And Coding Technique Standards Technical Guide
A Software Engineer designs, develop, tests, and evaluates the software and the systems that allow computers to execute their applications.
Take on the role of Software Engineer for the organization you selected in Week 1.
Use the technical guide template to create a 3- to 4-page Secure Staging Environment Design and Coding Technique Standards Technical Guide for the organization you chose.
Research and include the following:
Design a secure staging environment for your organization
Diagram your staging environment
Include descriptions for each object in your environment
Create a secure coding technique/quality and testing standard for your organization covering the following secure coding techniques:
Proper error handling
Proper input validation
Normalization
Stored procedures
Code signing
Encryption
Obfuscation/camouflage
Code reuse/dead code
Server-side vs. client-side execution and validation
Memory management
Use of third-party libraries and ADKs
Data exposure
Code quality and testing
Automation
Static code analyzers
Dynamic analysis (e.g. fuzzing)
Stress testing
Sandboxing
Model verification
Template is provided and a previous assignment is attached as well. The previous assignment has the organization that I have been doing the project on.
CMGT/400v7
Security Risk Mitigation Plan Template
CMGT/400 v7
Page 2 of 2
Secure Staging Environment Design and Coding Technique Standards Technical Guide C:\Users\djshirey\OneDrive - University of Phoenix\F_Drive\Style Guides\UPX Logos\Horizontal format\UOPX_Sig_Hor_Black_Medium.pngTemplate
A Software Engineer designs, develop, tests, and evaluates the software and the systems that allow computers to execute their applications.
Take on the role of Software Engineer for the organization you selected in Week 1, and create a Secure Staging Environment Design and Coding Technique Standards Technical Guide using this template for the organization.
[Organization Name]
Diagram of Staging Environment
[Add or attach diagram. Include descriptions for each object in your environment.]
Secure coding Technique/Quality and Testing Standard
Proper Error Handling
[Response]
Proper Input Validation
[Response]
Normalization
[Response]
Stored Procedures
[Response]
Code Signing
[Response]
Encryption
[Response]
Obfuscation/Camouflage
[Response]
Code Reuse/Dead Code
[Response]
Server-side vs. Client-side Execution and Validation
[Response]
Memory Management
[Response]
Use of Third-Party Libraries and ADK’s
[Response]
Data Exposure
[Response]
Code Quality and Testing
[Response should include automation, static doe analyzers, dynamic analysis such as fuzzing, stress testing, sandboxing, model verification]