Discuss why security would be a consideration early in the s

Discuss why security would be a consideration early in the systems development process. Should security only be the responsibility of the security/network staff and not a concern to software developers?

Solution

Answer:

There is a term called \"Information System Developement Life Cycle ( ISDC) which represent whole from developing to its security concerns. Well , including security early in this system will result less expensive and effective security than adding it to an operational system. There are many phases in it , few are as below : -

Initial Phase , acquistion , implementation , operations , dispositions

In the initialized phase , security is the top of the priorities and thus indicates it must be considered as early as possible to make it more efficient and less expensive in future.

It is not the responsibility of the security / network staff only , it is the resposiblity of the developers too. Because we are aware from a recent survey that SQL injection is the most used attack by the users to exploit the web application. SQL is a server side attack and a developers need to take it under consideration that they need to parameterize the web url so that it will be SQL injection free.