Functional Design Analysis and Planning

CBK Applications and Systems Development Security (Part-1)

Written by Administrator

Thursday, 09 July 2009 08:54

Article Index
CBK Applications and Systems Development Security (Part-1)
Functionality vs Security
Database Management System
Database models
Database Interface Languages
Relational Database Components
Normalization
Integrity
Database Security Controls
Data Warehousing and Data Mining
Web Services
System Development
Functional Design Analysis and Planning
System Development Process Models
Verification vs Validation
Separation of Duties in System Development
Configuration management
All Pages

Page 13 of 17

During this phase System Design Specifications / software requirements come from three models:

Informational model Dictates the type of information to be processed and how it will be processed
Functional model Outlines the tasks and functions that the application needs to carry out
Behavioral model Explains the states that the application will be in during and after specific transitions take place

Whereas, system security requirements can be derived from several different sources:

Functional needs of the system or application
National, international, or organizational standards and guidelines
Export restrictions
Sensitivity level of data being processed (militarily strategic data versus private-sector data)
Relevant security policies
Cost/benefit analysis results
Required level of assurance to achieve the targeted security level rating
Are authentication and authorization necessary
Is encryption needed
Will the product need to interface with other systems?
Will the product be directly accessed via the Internet?

Last Updated on Friday, 28 August 2009 05:04

Please register or login to add your comments to this article.

SecurityArena