Understanding security architecture and planning; the purpose of software development and the SDLC
In support of a ‘Secure Development Lifecycle’ (Chapter 2. Ransome J. and Misra A. Core Software Security Auerbach Publications 2018 e-)) and through the use of the ‘Seven Touchpoints for Software Security’ (Chapter 3 McGraw G. Software Security: Building Security in Addison-Wesley 2006 ff)) outlined below, document and define how each of these seven touchpoints are relevant to the case study provided 4..
1. Code review
2. Architectural risk analysis
3. Penetration testing
4. Risk-based security tests
5. Abuse cases
6. Security requirements
7. Security operations
Given the case study, and each of the seven touchpoints, write a summary of how each of the touchpoints are relevant to the architecture and development life cycle of the system proposed.