Analyze how advanced security concepts are applied to develop secure code

profileLastJediJordan
CS305ProjectOneArtemisFinancialVulnerabilityAssessmentReportTemplate.docx

CS 305 Project One

Artemis Financial Vulnerability Assessment Report

Table of Contents Document Revision History 3 Client 3 Instructions 3 Developer 4 1. Interpreting Client Needs 4 2. Areas of Security 4 3. Manual Review 4 4. Static Testing 4 5. Mitigation Plan 4

Document Revision History

Version

Date

Author

Comments

1.0

[Date]

[Your Name]

Client

Instructions

Deliver this completed vulnerability assessment report, identifying your findings of security vulnerabilities and articulating recommendations for next steps to remedy the issues you have found. 

Respond to the five steps outlined below and include your findings. Replace the bracketed text on all pages with your own words. If you choose to include images or supporting materials, be sure to insert them throughout.

Developer

[Insert your name here]

1. Interpreting Client Needs

Determine your client’s needs and potential threats and attacks associated with their application and software security requirements. Consider the following regarding how companies protect against external threats based on the scenario information:

· What is the value of secure communications to the company?

· Are there any international transactions that the company produces?

· Are there governmental restrictions about secure communications to consider?

· What external threats might be present now and in the immediate future?

· What are the “modernization” requirements that must be considered, such as the role of open source libraries and evolving web application technologies?

[Include your findings here.]

2. Areas of Security

Referring to the Vulnerability Assessment Process Flow Diagram, identify which areas of security are applicable to Artemis Financial’s software application. Justify your reasoning for why each area is relevant to the software application. 

[Include your findings here.]

3. Manual Review

Continue working through the Vulnerability Assessment Process Flow Diagram. Identify all vulnerabilities in the code base by manually inspecting the code.

[Include your findings here.]

4. Static Testing

Run a dependency check on Artemis Financial’s software application to identify all security vulnerabilities in the code. Record the output from dependency check report. Include the following:

a. The names or vulnerability codes of the known vulnerabilities

b. A brief description and recommended solutions provided by the dependency check report

c. Attribution (if any) that documents how this vulnerability has been identified or documented previously

[Include your findings here.]

5. Mitigation Plan

After interpreting your results from the manual review and static testing, identify the steps to remedy the identified security vulnerabilities for Artemis Financial’s software application.

[Include your findings here.]

1