7 hours 33 minutes
greetings and welcome to Sudbury Cop TIA. Certified Van Security Practitioners Certification Preparation course.
This is a continuation Off Marginal six was his title. Secure Development.
These are objectives which encompasses this particular model itself. We conquer T on a discussion by taking a look at understanding requirements for software development in this particular presentation
for before we get going, let's take a look at a pre assessment course and bring her here,
and the question is as follows.
What's the name of a model that was a first assistant of every life size model to be used widely and software engineering to ensure the success of the project? Is a spiral morrow
be a big bang model seat, the waterfall model or D V model?
If you select that, See, you're absolutely correct is called a waterfall Martin.
Now, during this presidency, we're gonna take a look at a number of different what we call system development lifecycle models that you need to be a way off.
So without further ado, let's begin. I discuss about taking a look at the very first modern list of here, which is called a waterfall model.
Now, the waterfall approach with the first system of them a life size model to be used while in software engineering. To ensure the success of the project,
the waterfall approached. The whole process of software development is divine to separate phases
in this water form are typically the outcome. A one act
acts only input for the next phase sequentially.
Now they're opposite. There are some advantages to the waterfall mar simply need to use and understand
Phase is a process and complete it once one of the time
works well for smaller project where where crime is our very well understood,
clearly defined stages Well, under Stuart milestones, just the name of a few off some of the advantages.
Now, when you think about advantages, obviously gonna be some disadvantages that we need to highlight and they're gonna be highlighted in the very next slot.
And so what are some have disadvantages. They are as follows.
No working software's produce until late doing the life cycle,
High amount of risk and uncertainty can happen, as was all that
not a good model for complex and object oriented type projects.
Poor martyr, fel low and ongoing projects
not suitable for project where requirements are at a moderate to high risk of changing so risks and uncertainties. High with this particular process, tomorrow
is different a measure process or progress within the stages,
and it cannot accommodate the changing requirements. One of the issues you have with the waterfall model,
our next model, that we're going time to take a look at his car irritant.
Now this particular model starts with a simple implementation of of a subset of the software carpets and basically what it doesn't enhance the involving version until the full system is implemented
at each generation, design modifications made and new functional capabilities are at it. The basic idea behind this Mara is to develop a system through a repeated cycle
and in smaller portions at a time. Other words. Incremental.
Let's not take a look at something what we call the advantage of this particular model.
Some working functionality can be developed quickly and early in the life cycle.
Results obtained early in periodically
parallel developments can be planned.
Progress can be obviously be magic,
less cost. It changed a scope and requirements
tested any bugging. Doing smaller iterations is easy.
Risk identified, a bizarre doing doing inaugurations, and each iteration is an easy manage type. Milestone
is easier managed arrest high risk part is done first.
This now brings us to water someone again. Disadvantages of this particular model that we need to take a look at
more Resource is may be required in this case,
although costs of changes lesser, but it's not very suitable for changing requirements.
Maur manager. Attention is required for this particular model.
Sense of architectural design issues may arrive because not all of the crimes I gather in the beginning of the entire life cycle
defining increments may require definition of the complete system
not suitable for smaller projects.
Manager Complexity is MAWR. In this particular case,
the end project into the project may not be known for which is the risk
highlights your resources required for risk analysis. With this particular model again looking at the disadvantages,
the next model won't take a look. It's called a spiral model.
The spiral model combines idea a curative
development with systematic control aspects of the war for model.
The spiral model is a combination of a spirited mark development process or federation process and sequential linear development model.
The waterfall model would have very high emphasis on Rhys analysis. It allows in criminal release of the product or incremental refinements through each generation around the spiral.
Let's take a look at some of the advantages of the spiral model.
Changeable promise can be accommodated in this case. Ah la extensive use off photo types.
Real crimes can be captured more accurately.
You see the system early
development. We divide into smaller parts, and the risk it pause can be developed earlier, which helps in better risk management.
Let's look at the disadvantage of the spiral model.
Imagine more complex
into the project may not be known early,
not suitable for new Arlo projects, and can be expensive for small projects.
Processes opposite in this case could be very complex,
and the spiral can go on if indefinitely. In other words,
and a large number of immediate stages were quite assess it. Documentation.
The next model want to take a look. It's called a B model.
This is assistant of Life Simon, where the execution of processes happens in this exponential manner in a V shape is also known as a verification, verification and validation model. Now this is extension off the waterfall Mara and is based on associates of testing phases for each course part of development stage.
This means that
airy phase in development cycle, there's a direct associate testing phase. This is a highly disciplined Morrow, and the next phase starts on Lee after completion off the previous phase.
Let's look at some of the advantage of the V model is a highly disciplined model and face it all. Complete it one at a time
works well for a smaller party where crimes are very where understood,
simple, easy to understand and use
easily manage due to the originator of the other bottle. Each phase has specific levels and a review process.
No work it's always produce until late doing the life cycle
the next month is called the Big Bang model.
The Big Bang is a sin of every system of every lifetime of where you do not follow any specific process. Development just starts with the required money and effort as the input, and the output is a soft wood about what software developed, which may or may not be as per customer promise
you that this model followed by smaller, smaller part where the development team are very small,
so looking at the Big Bang. Modern terms of vintage is this is a very simple morrow.
Little, no planning require easily manage. Very few resources required gifts. Let's ability to the developer is a good learning A for new commerce or students.
This brings us to some of the disadvantages of the Big Bang. Very high risk and uncertainty, not a good model for complex and object Orient projects. Poor martyr, full loan and ongoing projects can turn out to be very expensive if the requirements are mis understood.
Another thing is very important to the potato. We look at software development. We want to make sure we engage in what we call Secur cold practices. Secure Code is the practice of writing software that's protected from vulnerability. Other words. Witnesses. It's important because for also over whether you write code that runs on mobile devices,
your personal computer service or embedded devices, we need to engage in what we call Secur co practices.
So you could need because so you can come for me with the techniques and tools to support the practice
opposite. There's some risk of insecure software. You have been out of service to a single user. It can compromise your secrets who resulted in the loss of service, damage to the system of 1000 of users and also loss of life because of enduring opposite widow realize there are risks involved in secure code.
Doing this presentation, we took a look at it took a looking at several different models, not just mentioned. We took a look at the Big Bang model. We learned about that model. We also to discuss other models is where we learned that you need to understand and apply software vulnerabilities. We discussed the fact that you understand the requirements for software development as well.
In our upcoming presentation will continue our discussion
up section, to which we're gonna continue to focus upon understand requirements for software development in the next video. Again, I wanna thank you very much attention to detail, and I look forward to seeing you on the very next video
In this course, you will learn all of the domains and concepts associated with the CompTIA Advanced Security Practitioner CAS-003 CASP+ Exam. Through this course you will be fully prepared to sit for your CompTIA A+ Exam!