Monitoring and testing activities
Monitoring the application, and testing the security controls is an important step for software security assurance. Application controls are mechanisms used to preserve confidentiality, integrity, and availability of the application systems and the data they process, store, or transmit. Such application controls are important to address vulnerabilities and thwart attacks.
Some of the important application controls that need to be addressed during development processes include the following:
- Memory and address protection is a control used to ensure controlled access to the memory and address locations by the application. The core focus is to limit access and prevent overwriting other memory areas.
- Access control is a process used to ensure access to authorized entities and block unauthorized entities.
- File protection is a mechanism used to ensure that files are accessed and modified by authorized entities in a controlled manner.
- Authentication is a process used...