The eCore Group, profile picture
Uploaded byThe eCore Group
1,062 views

Secure Coding 2013

Meenu Dogra is a software engineer who specializes in secure coding and application development. She holds an Oracle Certified Associate certification and gives webinars on security topics. Her document discusses the importance of online security for businesses and developers. It introduces the Secure System Development Life Cycle (SSDLC) as a method to incorporate security at all stages of developing software systems, from requirements analysis to verification. The SSDLC aims to address vulnerabilities that could otherwise pose risks to an organization's online operations and security.

Embed presentation

LHSSS-5 Secure Coding Meenu Dogra Software Engineer www.LearnHackingSecurity.com
About Myself  Meenu Dogra  Software Engineer  Specializes in Secure Coding/Application Development  Oracle Certified Associate (OCA)  Speaker – Webinars  Email : Meenu . Dogra@eCoreTechnoS.com
Internet – World Wide Connectivity »95.6% people are online right when they wake up Reading Online News Online Online Banking / Shopping Transactions Internet Social Sites – E-mails Connect Everyone's
Business Strategy – Being Online • Each and every organization now want to be online. » Online Business Strategy • Selling Products Online • Online Marketing (Social Websites + Ads) • Online Products Analysis • But it can be a huge Risk for their Business » So, Developers need to make a “TRUST OF SECURITY”
Security – High Priority • Online Security is a biggest challenge » Developers Issues • Operating System Vulnerability • Firewall Security Breach • Network Security Flaws • Intrusion Detection System Vulnerability • Application-based Vulnerability
Secure System Development Life Cycle
Secure System Development Life Cycle (SSDLC) Requirement Design Implementation Verification Analysis
SSDLC
SSDLC
SSDLC
SSDLC :: Graphical Explanation
SSDLC
LHS Connections and Updates #HackingTechnoS Get Latest Facebook Hacking & Security Updates Security Updates Connect with us Subscribed on Facebook.com/HackingTechn Hands-On Labs LHS/ePaper ologies
Resources http://www.eCoreTechnoS.com www.LearnHackingSecurity.com http://www.HackingTechnologies.com http://www.GetHackingSecurity.com

More Related Content

PDF
Web Application Security 101
byCybersecurity Education and Research Centre
 
PDF
Web Application Security and Awareness
byAbdul Rahman Sherzad
 
PDF
OWASP Top 10 Project
byMuhammad Shehata
 
PPTX
Secure SDLC in mobile software development.
byMykhailo Antonishyn
 
PDF
Application Security Guide for Beginners
byCheckmarx
 
PPTX
Owasp
bypenetration Tester
 
PDF
Application Security Testing(AST)
byArvind Bhardwaj [AB]
 
PDF
Testing Web Application Security
byTed Husted
 
Web Application Security 101
byCybersecurity Education and Research Centre
 
Web Application Security and Awareness
byAbdul Rahman Sherzad
 
OWASP Top 10 Project
byMuhammad Shehata
 
Secure SDLC in mobile software development.
byMykhailo Antonishyn
 
Application Security Guide for Beginners
byCheckmarx
 
Owasp
bypenetration Tester
 
Application Security Testing(AST)
byArvind Bhardwaj [AB]
 
Testing Web Application Security
byTed Husted
 

What's hot

PPT
Secure by design and secure software development
byBill Ross
 
PDF
OWASP Top Ten in Practice
bySecurity Innovation
 
PDF
Secure coding guidelines
byZakaria SMAHI
 
PPT
Introduction To OWASP
byMarco Morana
 
PPTX
Anatomy of an Attack - Sophos Day Belux 2014
bySophos Benelux
 
PDF
Web Application Penetration Testing
byPriyanka Aash
 
PPTX
Owasp Mobile Risk Series : M4 : Unintended Data Leakage
byAnant Shrivastava
 
PDF
Oh, WASP! Security Essentials for Web Apps
byTechWell
 
PDF
OWASP Top 10 - The Ten Most Critical Web Application Security Risks
byAll Things Open
 
PDF
5 Important Secure Coding Practices
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
PDF
Owasp top 10
byYasserElsnbary
 
PPS
Security testing
byTabăra de Testare
 
PPTX
Security testing fundamentals
byCygnet Infotech
 
PDF
we45 - Web Application Security Testing Case Study
bywe45
 
PPTX
Web Application Security 101
byJannis Kirschner
 
PDF
Application Security Risk Assessment
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
PPTX
Crafting Super-Powered Risk Assessments by Digital Defense Inc & Veracode
byDigital Defense Inc
 
PPTX
Security Testing
byQualitest
 
PDF
Pentesting Your Own Wireless Networks, June 2011 Issue
byIshan Girdhar
 
Secure by design and secure software development
byBill Ross
 
OWASP Top Ten in Practice
bySecurity Innovation
 
Secure coding guidelines
byZakaria SMAHI
 
Introduction To OWASP
byMarco Morana
 
Anatomy of an Attack - Sophos Day Belux 2014
bySophos Benelux
 
Web Application Penetration Testing
byPriyanka Aash
 
Owasp Mobile Risk Series : M4 : Unintended Data Leakage
byAnant Shrivastava
 
Oh, WASP! Security Essentials for Web Apps
byTechWell
 
OWASP Top 10 - The Ten Most Critical Web Application Security Risks
byAll Things Open
 
5 Important Secure Coding Practices
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
Owasp top 10
byYasserElsnbary
 
Security testing
byTabăra de Testare
 
Security testing fundamentals
byCygnet Infotech
 
we45 - Web Application Security Testing Case Study
bywe45
 
Web Application Security 101
byJannis Kirschner
 
Application Security Risk Assessment
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
Crafting Super-Powered Risk Assessments by Digital Defense Inc & Veracode
byDigital Defense Inc
 
Security Testing
byQualitest
 
Pentesting Your Own Wireless Networks, June 2011 Issue
byIshan Girdhar
 

Viewers also liked

PPTX
Online Shopping Full Project Presentation (20 slides)
byKrishna Mohan Shakya
 
PPTX
Online shopping Project
byKrishna Mohan Shakya
 
PPTX
Online Shopping System [SE]
byCh Fahadi
 
PPT
Visual Basic Codes And Screen Designs
byprcastano
 
PDF
The Best Source Code VB
byNurdin Al-Azies
 
DOC
project on visual basic 6.0 ' Jewellery Shop Management'
byAnitha Krishnappa
 
Online Shopping Full Project Presentation (20 slides)
byKrishna Mohan Shakya
 
Online shopping Project
byKrishna Mohan Shakya
 
Online Shopping System [SE]
byCh Fahadi
 
Visual Basic Codes And Screen Designs
byprcastano
 
The Best Source Code VB
byNurdin Al-Azies
 
project on visual basic 6.0 ' Jewellery Shop Management'
byAnitha Krishnappa
 

Similar to Secure Coding 2013

PPTX
Next Generation Firewalls
byThe eCore Group
 
PPTX
Click or Not to Click (Cyber Security Awareness )
byJobayer Almahmud Hossain (RHCA, RHCDS, RHCSS)
 
PPTX
Lesson 2- Online Systems,Platforms, Online Security, Ethics.pptx
byArnoldoCimafranca2
 
PPTX
INTERNET
byyaharamazing
 
PPTX
etech ppt.pptxjhgkjiuyiopopioyuydrtstsrtyrrr
byfamarietumbaga
 
PDF
HES2011 - Raould Chiesa - Hackers Cybercriminals from Wargames to the Undergr...
byHackito Ergo Sum
 
PDF
Log Out Cyber Awareness
byApurv Singh Gautam
 
PPTX
The Power of the Internet, advantages and tools.pptx
byhemin14
 
PDF
nullcon 2010 - Underground Economy
byn|u - The Open Security Community
 
PPTX
Cyber Safety 101
byJeff Niebaum, M.A
 
PDF
E2 Labs: ADVANCED PROGRAM ON: THE SECURITY OF A WEBSITE
bye2-labs
 
PDF
Bar Camp 11 Oct09 Hacking
byBarcamp Kerala
 
PDF
Web security 2012
byMohamed Elabnody
 
PDF
Caloosa Tech Times October 2009
byITbyTheSea
 
PDF
Is the Web at Risk?
byCarlos Serrao
 
PDF
Social Networks And Phishing
byecarrow
 
PDF
Security In A Connected Society
byCentraComm
 
PPTX
Protecting the identities of your website customers
bySymantec Website Security
 
PDF
Sophos Security Threat Report Jan 2010 Wpna
bydelamm2
 
PPTX
Internet ! BATRA COMPUTER CENTRE
byjatin batra
 
Next Generation Firewalls
byThe eCore Group
 
Click or Not to Click (Cyber Security Awareness )
byJobayer Almahmud Hossain (RHCA, RHCDS, RHCSS)
 
Lesson 2- Online Systems,Platforms, Online Security, Ethics.pptx
byArnoldoCimafranca2
 
INTERNET
byyaharamazing
 
etech ppt.pptxjhgkjiuyiopopioyuydrtstsrtyrrr
byfamarietumbaga
 
HES2011 - Raould Chiesa - Hackers Cybercriminals from Wargames to the Undergr...
byHackito Ergo Sum
 
Log Out Cyber Awareness
byApurv Singh Gautam
 
The Power of the Internet, advantages and tools.pptx
byhemin14
 
nullcon 2010 - Underground Economy
byn|u - The Open Security Community
 
Cyber Safety 101
byJeff Niebaum, M.A
 
E2 Labs: ADVANCED PROGRAM ON: THE SECURITY OF A WEBSITE
bye2-labs
 
Bar Camp 11 Oct09 Hacking
byBarcamp Kerala
 
Web security 2012
byMohamed Elabnody
 
Caloosa Tech Times October 2009
byITbyTheSea
 
Is the Web at Risk?
byCarlos Serrao
 
Social Networks And Phishing
byecarrow
 
Security In A Connected Society
byCentraComm
 
Protecting the identities of your website customers
bySymantec Website Security
 
Sophos Security Threat Report Jan 2010 Wpna
bydelamm2
 
Internet ! BATRA COMPUTER CENTRE
byjatin batra
 

More from The eCore Group

PDF
15 Tips to Protect Yourself from Cyber Attacks
byThe eCore Group
 
PPTX
Top 10 Cyber Attacks on Healthcare Industry
byThe eCore Group
 
PPTX
Windows 8 security eCore
byThe eCore Group
 
PPTX
CMS Joomla
byThe eCore Group
 
PDF
India is Cyber Vulnerable
byThe eCore Group
 
PPTX
Cyber crime trends in 2013
byThe eCore Group
 
PDF
Top 5 Cyber Threats of 2014
byThe eCore Group
 
PPTX
Windows server 2012 security Webinar
byThe eCore Group
 
15 Tips to Protect Yourself from Cyber Attacks
byThe eCore Group
 
Top 10 Cyber Attacks on Healthcare Industry
byThe eCore Group
 
Windows 8 security eCore
byThe eCore Group
 
CMS Joomla
byThe eCore Group
 
India is Cyber Vulnerable
byThe eCore Group
 
Cyber crime trends in 2013
byThe eCore Group
 
Top 5 Cyber Threats of 2014
byThe eCore Group
 
Windows server 2012 security Webinar
byThe eCore Group
 

Recently uploaded

PPTX
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
PPTX
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PPTX
Top _HR Technology Trends _for 2026_.pptx
byAutomationEdge Technologies
 
PDF
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
PDF
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
PDF
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PDF
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
PPTX
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
PDF
Day 4 - Access, Deployments, and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
PPTX
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
PDF
Cross-Cultural Agile Development -Challenges and Strategies for Overcoming Them-
byTakashi Makino
 
PDF
AI Powered Document Processing and Data Extraction
byRobert McDermott
 
PDF
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Top _HR Technology Trends _for 2026_.pptx
byAutomationEdge Technologies
 
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
Day 4 - Access, Deployments, and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
Cross-Cultural Agile Development -Challenges and Strategies for Overcoming Them-
byTakashi Makino
 
AI Powered Document Processing and Data Extraction
byRobert McDermott
 
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 

Secure Coding 2013

  • 1.
    LHSSS-5 Secure Coding Meenu Dogra Software Engineer www.LearnHackingSecurity.com
  • 2.
    About Myself  Meenu Dogra  Software Engineer  Specializes in Secure Coding/Application Development  Oracle Certified Associate (OCA)  Speaker – Webinars  Email : Meenu . Dogra@eCoreTechnoS.com
  • 3.
    Internet – WorldWide Connectivity »95.6% people are online right when they wake up Reading Online News Online Online Banking / Shopping Transactions Internet Social Sites – E-mails Connect Everyone's
  • 4.
    Business Strategy –Being Online • Each and every organization now want to be online. » Online Business Strategy • Selling Products Online • Online Marketing (Social Websites + Ads) • Online Products Analysis • But it can be a huge Risk for their Business » So, Developers need to make a “TRUST OF SECURITY”
  • 5.
    Security – HighPriority • Online Security is a biggest challenge » Developers Issues • Operating System Vulnerability • Firewall Security Breach • Network Security Flaws • Intrusion Detection System Vulnerability • Application-based Vulnerability
  • 6.
  • 7.
    Secure System DevelopmentLife Cycle (SSDLC) Requirement Design Implementation Verification Analysis
  • 8.
  • 9.
  • 10.
  • 11.
    SSDLC :: GraphicalExplanation
  • 12.
  • 13.
    LHS Connections andUpdates #HackingTechnoS Get Latest Facebook Hacking & Security Updates Security Updates Connect with us Subscribed on Facebook.com/HackingTechn Hands-On Labs LHS/ePaper ologies
  • 14.
    Resources http://www.eCoreTechnoS.com www.LearnHackingSecurity.com http://www.HackingTechnologies.com http://www.GetHackingSecurity.com

Editor's Notes

  • #6 Here is an example of our approach in action. This is the Koobface attack, which is still active in the wild.Starts as a link to a non-existent video on a malicious site sent via IM, email, or webmail. The first layer of protection is web filtering to block access to the site. If the user clicks on the link, he would receive a phony alert telling him his player is not working, and to download a non-existent new version on a malicious site. By clicking on the “OK” button on the phony Error message, the user is actually instructing his system to install the virus. Antivirus protection would detect the file that the user is trying to install, and block itOnce installed, the worm would try to propagate. The IPS technology would detect the propagation effort, and block it before it could succeed.