(ISC)² ® CSSLP Domain 4: Secure Software Implementation

from InfosecTrain · host InfosecTrain

Domain 4: Secure Software Implementation (14%) The fourth domain of the CSSLP certification exam is a secure software implementation, and the domain comprises 14% exam weightage. This domain covers the most significant security challenges and concerns for developers to consider while writing code. This domain explains declarative vs. mandatory (programmatic) security, Sanitization of output (encoding, obfuscation), Auditing and logging in a secure manner, Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST), Compiler switches, and address compiler warnings. The CSSLP certification exam’s fourth domain covers the following subtopics: Adhere to relevant secure coding practices Analyze code for security risks Implement security codes Address security risks Securely reuse third-party code or libraries Securely integrate components Apply security during the build process (ISC)² ® CSSLP Domain 4: Secure Software Implementation

What this episode covers

NOW PLAYING

0:00 5:31

1×

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

Share this episode

Similar Episodes

No similar episodes found.

Similar Podcasts

No similar podcasts found.

Frequently Asked Questions

How long is this episode of InfosecTrain?

This episode is 5 minutes long.

When was this InfosecTrain episode published?

This episode was published on December 6, 2022.

What is this episode about?

Can I download this InfosecTrain episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.

URL copied to clipboard!