This lesson covers defensive coding. Defensive coding is a form of proactive secure coding which is intended to ensure the continuing function of software under unforeseen circumstances and is most often when there is a likelihood that a piece of software might get misused. Defensive coding has many advantages and can solve a number of issues before they even have a chance to develop. Strong defensive coding practices discussed in this unit are: • Input validation • Sanitization • Safe APIs • Tokenizing • Sandboxing • Anti-Tampering Techniques • Secure processes for software o Version control o Code analysis o Code/peer review • Secure builds
ISC2 Certified Secure Software Life-cycle Professional (CSSLP)
This course helps professionals in the industry build their credentials to advance within their organization, allowing them to learn valuable managerial skills as well as how to apply the best practices to keep organizations systems running well.