From the course: CSSLP Cert Prep: 7 Software Deployment, Operations, and Maintenance
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Storing and managing security data
From the course: CSSLP Cert Prep: 7 Software Deployment, Operations, and Maintenance
Storing and managing security data
- [Illustrator] In addition to the source code, your release process should account for the security data that your app needs to function. Now, what do I mean by security data? This includes things like credentials secrets, keys, certificates and configurations. Back in the very first course, secure software concepts, we discussed identity and access management or IAM. As your app moves through its lifecycle from design to development and ultimately to deployment, you can start to see how those concepts are applied at each stage. This is a great example. When you deploy your app and the ops team takes control, that team needs access to security data in order to administer the app. End-users also need to log in and trusted apps need the ability to authenticate to and interact with your app. As a CSSOP, it's your responsibility to make sure that data is accessible to the right people and to trusted integrations, but…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.