Questions w10

K Week 10 Question "Integrating Security"  Most of the security issues today can be traced back to flaws in application development. With this in mind, consider how a company can integrate best practices into their software development standards.  • Review the SANS Institute’s InfoSec reading room paper titled “Integrating Security into Development, No Pain Required” found at https://software-security.sans.org/resources/paper/reading-room/integrating-security-development-pain-required. How does the approach of the Security Development Lifecycle differ from the Software Development Lifecycle? Which method—Microsoft or Agile—would you use if you had to develop software, and why? What other available resource could you recommend to a company interested in implementing this approach? Share your examples with your classmates and provide links to any useful resources you find.  • After reading a few classmate postings, reply to the ones where you learned something new, or have something to add. Get in early to post your initial response and keep the discussion going. Question 2: There are times when a database is accessed by many users across the enterprise. Transaction logs can help maintain concurrency in a multiuser platform. Describe at least two business scenarios where COMMIT and ROLLBACK would be required. Describe how these functions would be essential for business continuity and concurrency control. Identify how these functions would enable an organization to recover from a database corruption event. Describe how locks could be used in order to qualify data transactions and enhance concurrency control. Suggest at least two business scenarios that would benefit from implementing locking methods.