Answer

Running head: RESPONSE TO SOFTWARE SECURITY

1

RESPONSE TO SOFTWARE SECURITY 2

Response to software security

Students name:

Professor:

Date:

Initial post

There is a great need to have the software secured to avoid possible breakdowns and malfunctionings. An attack on software can lead to heavy losses or disasters in which to recover from incidences of disaster is a costly and expensive undertaking. Software is a target of attackers who aim at exploiting the vulnerabilities of the software to enable the threats (Ransome & Misra,2013). The vulnerabilities and the threats that face the software are what make it essential to initiate security strategies and improve on the security plans that are being used or even making them stronger against the vulnerabilities and the possible threats. Throughout the development of software development life, software security is the most important since it would negate the weaknesses from the beginning until the end of the project. During software development, the software must pass through various security phases to satisfy them before being released (McGraw,2006).IT must even pass through the security engineering assessment and PCI phase as final steps towards being published. Some software has security measures codified in the SDLC, especially in some industries like those that use bank cards in the finance industry. Most security measures work the same despite being different but yield the same or similar results,

Clouds have changed the way we think of the development of secure software systems. Cloud computing is considered a safer and more reliable and convenient to store sensitive information since it has more significant storage and retrieval is faster. We used to think that the development of secure software, but we have noticed that despite the efforts to come up with a more secure one, the software is still a subject of compromise, a target of threats, especially by having their vulnerabilities acted in by attackers. With security measures in place, the software is safer compared to those that don't have security, and complex securities are hard to break in by crackers.

Response 1

Response to Gabriel

I agree with the first document, and I can confirm I agree with it based on its findings and conclusions. The Article talks of the essentiality of security to credit card, and the need for security is enhanced during the requirement phase, and there is also codification in the SDLC. The software must pass through various security reviews, and security is also considered an essential component in the life cycle of the development project. Still, during the development t phase, the final step requires the system to be passed through the security engineering assessment and PCI before it goes to the production phase (Ransome & Misra,2013). There are multiple releases daily and weekly, and they must be subjected to code reviews in both facets manual and automated, and the ability to work in twos allows reviews and writings at the same time depending on the industrial operations. Some industries put more emphasis on security like the Credit cards in is the scenario.

In contrast, others don not .it important to note that information is essential and needs to be treated in a more secure manner (McGraw,2006). Clouds are using different technologies to achieve similar results. Firewall appliances or use virtual ones will give almost the same result but are different, just like the AWS security group.

Response 2

Response to Stephan

I agree with the document as it matches the many types of research I have done and the many articles I have come across. The article speaks of the need to retain and increase the security of the software throughout the SDLC. It allows the issue of security to be designed and planned, especially during the initial stages of the security cycle, with fixed and controllable solutions on one side of the software design (McGraw,2006). Due to the increase in threats and vulnerabilities b and the dire consequences the results can yield, it makes it essential to have security as an important driver. In response to the security measures, cloud computing has also boosted their security attention due to its importance and the need to counter the threats. In the SDLC, it is dynamic. It reconsiders and considers their software to adjust, and fine-tunes are important to them (Ransome & Misra,2013). security component being thought of is the profile of the user, devices such as the IoT, Computer, and iPhone have become part of our culture, and people of all ages are using them. The chances and increase in vulnerabilities are enabled by cloud computing due to their access and control. For convenience, there is a need to ensure more secure system ones in clouds and security ensures that the information is pervasive, secure, and available.