Fundamentals of Secure Application Development

Part 1: Secure Software Development

1. Assets, Threats & Vulnerabilities
2. Security Risk Analysis (Bus & Tech)
3. Secure Dev Processes (MS, BSI…)
4. Defense in Depth
5. Approach for this course

Introductory Case Study

Part 2: The Context for Secure Development

1. Assets to be protected
2. Threats Expected
3. Security Imperatives (int&external)
4. Organization's Risk Appetite
5. Security Terminology
6. Organizational Security Policy
7. Security Roles and Responsibilities
8. Security Training for Roles
9. Generic Security Goals & Requirements

Exercise: Our Own Security Context

Part 3: Security Requirements

1. Project-Specific Security Terms
2. Project-Related Assets & Security Goals
3. Product Architecture Analysis
4. Use Cases & MisUse/Abuse Cases
5. Dataflows with Trust Boundaries
6. Product Security Risk Analysis
7. Elicit, Categorize, Prioritize SecRqts
8. Validate Security Requirements

Exercise: Managing Security Requirements

Part 4: Designing Secure Software

1. High-Level Design
   1. Architectural Risk Analysis
   2. Design Requirements
   3. Analyze Attack Surface
   4. Threat Modeling
   5. Trust Boundaries
   6. Eliminate Race Objects
2. Detail-Level Design
   1. Secure Design Principles
   2. Use of Security Wrappers
   3. Input Validation
   4. Design Pitfalls
   5. Validating Design Security
   6. Pairing Mem Mgmt Functions
   7. Exclude User Input from format strings
   8. Canonicalization
   9. TOCTOU
   10. Close Race Windows
   11. Taint Analysis

​Exercise: A Secure Software Design, Instructor Q and A

Part 5: Writing Secure Code

1. Coding
   1. Developer guidelines & checklists
   2. Compiler Security Settings (per)
   3. Tools to use
   4. Coding Standards (per language)
   5. Common pitfalls (per language)
   6. Secure/Safe functions/methods
      1. Stack Canaries
      2. Encrypted Pointers
      3. Memory Initialization
      4. Function Return Checking (e.e. malloc)
      5. Dereferencing Pointers
   7. Integer type selection
      1. Range Checking
      2. Pre/post checking
   8. Synchronization Primitives
2. Early Verification
   1. Static Analysis (Code Review w/tools)
   2. Unit & Dev Team Testing
   3. Risk-Based Security Testing
   4. Taint Analysis

Exercise: Secure Coding Q and A

Part 6: Testing for Software Security

1. Assets to be protected
2. Threats Expected
3. Security Imperatives (int&external)
4. Organization's Risk Appetite
5. Static Analysis
6. Dynamic Analysis
7. Risk-Based Security testing
8. Fuzz Testing (Whitebox vs Blackbox)
9. Penetration Testing (Whitebox vs Blackbox)
10. Attack Surface Review
11. Code audits
12. Independent Security Review

Exercise: Testing Software for Security

Part 7: Releasing & Operating Secure Software

1. Incident Response Planning
2. Final Security Review
3. Release Archive
4. OS Protections:
   1. Address Space Layout Randomization
   2. Non-Executable Stacks
   3. W^X
   4. Data Execution Prevention
5. Monitoring
6. Incident Response
7. Penetration Testing

Exercise: A Secure Software Release

Part 8: Making Software Development More Secure

1. Process Review
2. Getting Started
3. Priorities

Exercise: Your Secure Software Plan

Professionals who may benefit include:

• Application Development Managers
• Software Engineers and Developers
• CISOs, CISAs and Security Professionals
• Software Testers
• QA Managers, Directors, and Staff
• Test Management
• Business Analysts
• Project Managers
• IT Specialists (Security, Capacity Management, Networking…)

• Understand assets, threats, vulnerabilities, and risks
• Gather and understand security requirements
• Design secure software
• Write secure code
• Test your software for security
• Release & operate secure software