SDL PROCESS: VERIFICATION

This phase involves a comprehensive effort to ensure that the code meets the security and privacy tenets established in the previous phases.

CLICK ON A SDL PHASE OR PRACTICE BELOW TO LEARN MORE

  • Reviewing attack surface upon code completion helps ensure that any design or implementation changes to an application or system have been taken into account, and that any new attack vectors created as a result of the changes have been reviewed and mitigated including threat models.

    When should this practice be implemented?

    Traditional Software development: Verification Phase
    Agile development: Bucket Verification

    RESOURCES SPECIFIC TO THIS PRACTICE