From the course: CISSP Cert Prep (2021): 6 Security Assessment and Testing
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Code review
From the course: CISSP Cert Prep (2021): 6 Security Assessment and Testing
Code review
- [Instructor] Software code is one of the most common sources of security vulnerabilities. Developers write billions of lines of code each year, and there are thousands of security issues buried in the complexity of that code, just waiting to be discovered. Code reviews are one of the most important software testing techniques. During a code review, developers have their work reviewed by other developers who examine the code to ensure that it doesn't contain obvious or subtle security issues. This process may be totally informal, completely formal, or something in between. The most formal code review process is known as the Fagan inspection. Fagan inspections follow a six-step process. During the first step, planning, developers perform the prework required to get the code review underway. This includes preparing the materials required for the review, identifying the participants, and scheduling the review. Next…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.