Mohammed Fazuluddin, profile picture
Uploaded byMohammed Fazuluddin
5,978 views

Security Design Concepts

This document provides an overview of key concepts for application security design. It discusses the importance of incorporating security throughout the application development lifecycle. It outlines several security design aspects that should be considered, including authentication, authorization using roles, session management, and implementing a secure access layer. It also emphasizes the importance of security testing, code reviews, and conducting risk assessments and assurance testing prior to deployment. Finally, it discusses how to establish security guidelines and build a centralized security infrastructure with interoperable components to provide identity, authentication, authorization and other security services across applications in a standardized way.

Embed presentation

SECURITY DESIGN CONCEPTS @Mohammed Fazuluddin
TOPICS • Overview • Security Design Aspects • Application Security Design Concepts • Application Security Guidelines • Security Architecture/Design Analysis • Security Risk Assessment And Assurance • Security Infrastructure With Interoperable Components
OVERVIEW Basic Security Design
OVERVIEW
OVERVIEW • Application security has always been a risk and it is always ignored by assuming that the firewalls will protect everything. • Many application attacks are happening even we have layered perimeter security, corporations need to realize the threat and raise its priority. • While designing the application the architect team need to work on security features with application teams to incorporate this life cycle within the various development styles that are being used. • To avoid the security risks , tools/products need to be acquired to perform risk assessment and assurance of the systems and applications that are being deployed. • New applications need to use the security infrastructure from the start and the older applications need to start migrating towards it.
OVERVIEW • In architectural designs need to be planned for the analysis of the vulnerabilities and a common, centralized security infrastructure. • While designing the application architecture we need to understand the functional, performance, cost and process requirements from a security perspective. • The infrastructure may provide the security components in a certain language and the application might be using a different language. • Standards for systems and applications need to be established and the guidelines, processes and checklists need to be developed for supporting the application security lifecycle.
OVERVIEW
Principles of Software Security: • Secure the weakest link. • Practice defense in depth. • Fail securely- If your software has to fail, make sure it does it securely. • Follow the principle of least privilege. • Compartmentalize- Minimize the amount of damage that can be done by breaking the system into units. • Keep it simple- Complex design is never easy to understand. • Promote privacy- Try not to do anything that compromises the privacy of the user. • Remember that hiding secrets is hard. • Be reluctant to trust- Instead of making assumptions that need to hold true, you should be reluctant to extend trust. • Use your community resources- Public scrutiny promotes trust. OVERVIEW
Software Security Best Practices: • Institute awareness programs. • Perform application assessments. • Capture security requirements. • Implement secure development practices. • Build vulnerability remediation procedures. • Define and monitor metrics. • Publish operational security guidelines. OVERVIEW
SECURITY DESIGN ASPECTS
SECURITY DESIGN ASPECTS Authentication: • Authentication is used to determine the legitimacy of a user who wants to access the application. • Different levels of authentication can be used to protect the application based on the risk associated with the application. • Sensitivity of the data, application functionality, application architecture (the more distributed it is, the more the risk), user base could be factors determining the risk. • Every user may not need access to the all the application resources including business logic and/or data. • The resources need to be grouped based on the functional roles different users have, this way of assigning privileges to a user is called the roles based access control (RBAC) method.
SECURITY DESIGN ASPECTS
SECURITY DESIGN ASPECTS Authentication: • Once a user is authenticated and is authorized to perform a business function (transaction), there may be data/control transfer between different processes on different systems. • If the data is corrupted or compromised, there will be integrity and confidentiality issues. In addition to protecting data in transit, protection of static data is required to provide integrity and confidentiality. • If the configuration files containing the connection and initialization attributes of an application were compromised, integrity and confidentiality of the application resources could be severely compromised. • The cost of implementing a solution varies widely with the different authentication technology that is used. In some cases, where there is a need for strong authentication, a combination of these factors should be used.
SECURITY DESIGN ASPECTS Confidentiality: • Confidentiality keeps the data secret from all but those who are authorized to see it. Various cryptographic methods can be used to provide confidentiality component. • ‘Cryptography is the art or science encompassing the principles and methods of transforming an intelligible message into one that is unintelligible and then retransforming that message back to its original form’. • Encryption transforms plain text to cipher text using a secret key and decryption transforms cipher text back to plain text using the secret key. • The cryptography method using the same secret key to encrypt and decrypt the messages is called symmetric and the one using different keys is called asymmetric. • Application data can be kept confidential using cryptography, if the secret key can be secured.
SECURITY DESIGN ASPECTS Auditing: • Auditing is another security feature that needs to be implemented in the application. • Since no application can ever be completely invulnerable to threats, auditing must be in- place to provide data needed for incident response. • The auditing feature should provide a trail of which user did what and when at any given point of the application lifetime. • The final component, Non-repudiation provides proof of existence of message. • The goal of a nonrepudiation component is to collect, maintain, make available irrefutable evidence.
SECURITY DESIGN ASPECTS Integrity: • Integrity is ‘the property that data has not been changed, destroyed, or lost in an unauthorized or accidental manner’. • Incorporating integrity into an application will inform the recipient of data modification by unauthorized users during storage or transmittal. • Various hash methods such as SHA-1 or MD5 can provide the integrity component. • Confidentiality is ‘the property that information is not made available or disclosed to unauthorized individuals, entities, or processes [i.e., to any unauthorized system entity]’.
SECURITY DESIGN ASPECTS
APPLICATION SECURITY DESIGN CONCEPTS
APPLICATION SECURITY DESIGN CONCPTS • In application design the security parameters needs to be involved with the application team to assist them in implementing proper security technology and/or processes. • The below mentioned security controls needs to be considered as part of security design… • Single Access Point • Session • Roles • Secure Access Layer • Audit • Administration layer
APPLICATION SECURITY DESIGN CONCEPTS
APPLICATION SECURITY DESIGN CONCEPTS Single Access Point: • User entry into an application should be though a single point. • This feature also saves the user from having to remember multiple passwords which can provide enhanced security by eliminating a need to write down passwords in unsecured places (for example, sticky notes under a keyboard or on a monitor) • Identification and authentication components need to be performed at this point. • Access points to multiple applications can be consolidated to a single point, often called a portal. Also, technologies such as single sign-on are gaining popularity. • Single sign-on enables a single access point into multiple applications by authenticating once. • Backdoors should be avoided and application entry should be restricted to a single point for all types of users, including administrators.
APPLICATION SECURITY DESIGN CONCEPTS
APPLICATION SECURITY DESIGN CONCEPTS Session: • Users should not have to authenticate multiple times while they are traversing an application, their current interaction with the application needs to be maintained by the application. • This session must be unique and separately maintained for every user. • If a user is away from the application for sometime, the session should help the application from determining the user and their current state with the application. • Authentication details like last active time can help the application determine whether it needs to authenticate the user again per the authentication policy.
APPLICATION SECURITY DESIGN CONCEPTS
APPLICATION SECURITY DESIGN CONCEPTS Roles: • Users have different needs in an application. Users should be given different privileges (read, change, add, delete) to various application resources within an application. • Users are grouped into a certain role and privileges to required application resources will be given to that role. Once that is done, all the users who perform that role are assigned that role instead of each privilege individually. • Instead of changing a privilege for every user, the administrator will just have to change it for that role. • Check points have to be established at every resource level where a privilege to a user needs to be defined. These check points should query the access control data to make a decision for the user to access the resource.
APPLICATION SECURITY DESIGN CONCEPTS
APPLICATION SECURITY DESIGN CONCEPTS Secure Access Layer: • Applications use various mechanisms to communicate with the user or other applications. • Depending on the classification of the data that is exchanged or control that is transferred during the communication, the access mechanisms and access layer need to be secured. • Confidentiality and integrity components need to be used to secure the communication, as well as static data. For example, SSL can be enabled on a web server using certificates to provide authentication of the application to the user, confidentiality between the application and the end user and integrity of the information transferred.
APPLICATION SECURITY DESIGN CONCEPTS
APPLICATION SECURITY DESIGN CONCEPTS Audit: • Components need to be placed in an application for tracking the actions being performed on the application resources. • The placement of these components should help tracing any application event. • Proper backup and recovery procedures need to be implemented for the audit output using retention guidelines. Also, the audit output should be properly formatted to help searches or statistic generation. • The output should definitely contain the successful and unsuccessful attempts by a user accessing a resource at the single access point and all the checkpoints. • Adding a timestamp, message code and message description will add value to the output.
APPLICATION SECURITY DESIGN CONCEPTS
APPLICATION SECURITY DESIGN CONCEPTS Administration layer: • Easy to use administration functionality needs to be provided to the application administrators to maintain user identification attributes, authentication and authorization information. • The administration functionality needs to be accessible to the administrators though the single entry point and proper authorization. • Some features that would help application administrators are: • Support for RBAC(creating roles and assigning them to users) • User administration(enable/disable users) • Application scan facility to generate new access points when changes are made to existing applications
Logic analysis: • Logic analysis evaluates the equations, algorithms, and control logic of the software design. Data analysis: • Data analysis evaluates the description and intended usage of each data item used in design of the software component. The use of interrupts and their effect on data should receive special attention to ensure interrupt handling routines do not alter critical data used by other routines. Interface analysis: • Interface analysis verifies the proper design of a software component's interfaces with other components of the system, including computer hardware, software, and end-users. Constraint analysis: • Constraint analysis evaluates the design of a software component against restrictions imposed by requirements and real-world limitations. The design must be responsive to all known or anticipated restrictions on the software component. These restrictions may include timing, sizing, and throughput constraints, input and output data limitations, equation and algorithm limitations, and other design limitations. SECURITY ARCHITECTURE/DESIGN ANALYSIS
Secure code reviews, inspections, and walkthroughs: • Secure Code reviews are conducted during and at the end of the development phase to determine whether established security requirements, security design concepts, and security-related specifications have been satisfied. Informal reviews: • Informal secure code reviews can be conducted on an as-needed basis. To conduct an informal review, the developer simply selects one or more reviewer(s) and provides and/or presents the material to be reviewed. The material may be as informal as pseudo-code or hand-written documentation. Formal reviews: • Formal secure code reviews are conducted at the end of the development phase for each software component. The client of the software appoints the formal review group, who may make or affect a "go/no-go" decision to proceed to the next step of the software development life cycle. Security testing: • Software security testing, which includes penetration testing, confirms the results of design and code analysis, investigates software behavior, and verifies that the software complies with security requirements. Special security testing, conducted in accordance with a security test plan and procedures, establishes the compliance of the software with the security requirements. SECURITY ARCHITECTURE/DESIGN ANALYSIS
APPLICATION SECURITY GUIDELINES • Application security development guideline needs to be created, specifying various technologies and a coding style to eliminate vulnerabilities and help mitigate risk. • A common vulnerability of application is buffer overflow. • Authorization needs to be handled carefully, just defining roles and assigning those to users will not completely secure authorization. • Situations where multiple roles are assigned to the same user with different types of privilege on the same resource need to be considered. • Error/exception handling mechanisms used should not display too many development details. • System configuration needs to be analyzed, never use the default configuration. • Some coding scheme needs to be used which could be cross-referenced to an error description database.
SECURITY RISK ASSESSMENT AND ASSURANCE • Applications need to be assessed at the business level to ascertain the risk based on information compromise, unauthorized access and availability for determining the security level that needs to be assigned to them. • After an application has been developed and functionally tested and before deploying it to production environment, we need to meticulously perform a security risk assessment and assurance test. • This test will help ensure the total system is in compliance based on the security level assigned to it. These tests need to be mandated on all applications, newly developed or changing an existing application or a purchased product. • Application risk checklists need to be developed to assure that proper security controls have been placed at the appropriate locations within the application. • The checklist must be updated at a regular interval to accommodate newer technologies and threats.
SECURITY RISK ASSESSMENT AND ASSURANCE • The checklist should contain all aspects of logical access for various security levels including: • User identification (registration process). • Authentication (level, password strength, sign-on attempts, account lockout policies, helpdesk processes on unlocking, session tracking) – authorization. • Sensitive data handling(encryption, hashing). • Auditing features. • Security administration. • Tools, products or processes need to be employed to standardize the methodology of security assessments. • Application contingency plans should be reviewed to make sure all the backup and recovery plans are up to date so that there is no disruption of service (availability).
Software security assurance program should ensure that: • A security evaluation has been performed for the software. • Security requirements have been established for the software. • Security requirements have been established for the software development and/or operations and maintenance (O&M) processes. • Each software review, or audit, includes an evaluation of the security requirements. • A configuration management and corrective action process is in place to provide security for the existing software and to ensure that any proposed changes do not inadvertently create security violations or vulnerabilities. • Physical security for the software is adequate. SECURITY RISK ASSESSMENT AND ASSURANCE
SECURITY INFRASTRUCTURE WITH INTEROPERABLE COMPONENTS
SECURITY INFRASTRUCTURE WITH INTEROPERABLE COMPONENTS • The infrastructure needs to be interoperable with any application and be maintained by a team that can keep pace with the latest standards. • Accomplishing the above and offering security as a centralized component can be a tedious and painful task. Eventually, the Enterprise will realize the fruits - cost savings and controlled environment. • This centralized infrastructure should: • Provide Identity, authentication, authorization, confidentiality, integrity non-repudiation and audit components. • Adhere to industry standards. • Easily manageable and scalable. • Provide the framework which needs to adapt to newer technologies with less effort (security is a race where the good guys always need to be in front of the bad guys). • To provide the above infrastructure, the security team needs to analyze the existing applications and define the requirements.
THANKS • If you feel it is helpful and worthy to share with other people, please share the same

More Related Content

PPT
Risk management(software engineering)
byPriya Tomar
 
PDF
Secure software design
byAshis Kumar Chanda
 
PPT
1.1 The nature of software.ppt
byJAYAPRIYAR7
 
PPTX
Active and Passive Network Attacks
byPradipta Poudel
 
PPTX
Intrusion detection
byCAS
 
PPT
Software Architecture
byPrabhat gangwar
 
PPTX
4+1 View Model of Software Architecture
bybashcode
 
PPT
Information security management
byUMaine
 
Risk management(software engineering)
byPriya Tomar
 
Secure software design
byAshis Kumar Chanda
 
1.1 The nature of software.ppt
byJAYAPRIYAR7
 
Active and Passive Network Attacks
byPradipta Poudel
 
Intrusion detection
byCAS
 
Software Architecture
byPrabhat gangwar
 
4+1 View Model of Software Architecture
bybashcode
 
Information security management
byUMaine
 

What's hot

PPTX
Network defenses
byPrachi Gulihar
 
PPT
Software architecture
bynazn
 
PPT
Chapter 10
byAbDul ThaYyal
 
PPT
Security testing
bybaskar p
 
DOCX
Kernel security of Systems
byJamal Jamali
 
PPT
Object Oriented Design in Software Engineering SE12
bykoolkampus
 
PPT
Software security
byRoman Oliynykov
 
PDF
NIST cybersecurity framework
byShriya Rai
 
PDF
Unit 5- Architectural Design in software engineering
byarvind pandey
 
PPTX
Vulnerability assessment and penetration testing
byAbu Sadat Mohammed Yasin
 
PDF
Software requirements
byDr. Loganathan R
 
PDF
Inter-Process Communication in distributed systems
byAya Mahmoud
 
PPTX
Information Security and the SDLC
byBDPA Charlotte - Information Technology Thought Leaders
 
PDF
Secure by Design - Security Design Principles for the Rest of Us
byEoin Woods
 
PPTX
Security Threats at OSI layers
byDepartment of Computer Science
 
PPTX
Software Testing Strategies
byAlpana Bhaskar
 
PPTX
Architectural styles and patterns
byHimanshu
 
PPT
Agile development, software engineering
byRupesh Vaishnav
 
PPTX
Architectural structures and views
byDr Reeja S R
 
PPTX
Message passing in Distributed Computing Systems
byAlagappa Govt Arts College, Karaikudi
 
Network defenses
byPrachi Gulihar
 
Software architecture
bynazn
 
Chapter 10
byAbDul ThaYyal
 
Security testing
bybaskar p
 
Kernel security of Systems
byJamal Jamali
 
Object Oriented Design in Software Engineering SE12
bykoolkampus
 
Software security
byRoman Oliynykov
 
NIST cybersecurity framework
byShriya Rai
 
Unit 5- Architectural Design in software engineering
byarvind pandey
 
Vulnerability assessment and penetration testing
byAbu Sadat Mohammed Yasin
 
Software requirements
byDr. Loganathan R
 
Inter-Process Communication in distributed systems
byAya Mahmoud
 
Information Security and the SDLC
byBDPA Charlotte - Information Technology Thought Leaders
 
Secure by Design - Security Design Principles for the Rest of Us
byEoin Woods
 
Security Threats at OSI layers
byDepartment of Computer Science
 
Software Testing Strategies
byAlpana Bhaskar
 
Architectural styles and patterns
byHimanshu
 
Agile development, software engineering
byRupesh Vaishnav
 
Architectural structures and views
byDr Reeja S R
 
Message passing in Distributed Computing Systems
byAlagappa Govt Arts College, Karaikudi
 

Viewers also liked

PPTX
Selecting best NoSQL
byMohammed Fazuluddin
 
PPTX
Java Security Framework's
byMohammed Fazuluddin
 
PPTX
NOSQL vs SQL
byMohammed Fazuluddin
 
PPTX
Software Design Concepts
byMohammed Fazuluddin
 
PPTX
Selecting the right cache framework
byMohammed Fazuluddin
 
PPTX
Cloud computing and data security
byMohammed Fazuluddin
 
PDF
BFS-2016-06-journal
byJames Wilson
 
PPT
30-Minute Social Media Marketing by Susan Gunelius
byKeySplash Creative, Inc.
 
PPTX
The power of “we got it wrong”
byWorkInConfidence
 
PDF
Parę spostrzeżeń dot. sklepów w Nowej Zelandii
byGrzegorz Osóbka
 
PDF
Asian mythology-workbook
byGuerrero Nora
 
PPTX
Aptech maliviya nagar is the best IT training institute in Delhi
byMCM Infotech
 
DOC
HOLYTHURSDAYSALVMbcsnet
byNkor Ioka
 
PDF
Press Release1
byHeather Dennis
 
PDF
No seatbealts = 8x chances of getting killed
byPODIS Ltd
 
Selecting best NoSQL
byMohammed Fazuluddin
 
Java Security Framework's
byMohammed Fazuluddin
 
NOSQL vs SQL
byMohammed Fazuluddin
 
Software Design Concepts
byMohammed Fazuluddin
 
Selecting the right cache framework
byMohammed Fazuluddin
 
Cloud computing and data security
byMohammed Fazuluddin
 
BFS-2016-06-journal
byJames Wilson
 
30-Minute Social Media Marketing by Susan Gunelius
byKeySplash Creative, Inc.
 
The power of “we got it wrong”
byWorkInConfidence
 
Parę spostrzeżeń dot. sklepów w Nowej Zelandii
byGrzegorz Osóbka
 
Asian mythology-workbook
byGuerrero Nora
 
Aptech maliviya nagar is the best IT training institute in Delhi
byMCM Infotech
 
HOLYTHURSDAYSALVMbcsnet
byNkor Ioka
 
Press Release1
byHeather Dennis
 
No seatbealts = 8x chances of getting killed
byPODIS Ltd
 

Similar to Security Design Concepts

DOCX
CHAPTER 9 Design Considerations In this chapter you will
byJinElias52
 
KEY
ONE Conference: Vulnerabilities in Web Applications
byNetcetera
 
PPTX
lecture5-securitydesignprinciplesOf Information
byAsrarMushtaq4
 
PDF
Principles for Secure Design and Software Security
byMona Rajput
 
PPT
dumil kuandu intheu vantharne some times it takes the kindaung of the going i...
byThiyagaRajan583837
 
PPT
ch0001 computer systems security and principles and practices
bystephen972973
 
PPT
Survey Presentation About Application Security
byNicholas Davis
 
PPS
Application Security Review 5 Dec 09 Final
byManoj Agarwal
 
PDF
An Introduction to Secure Application Development
byChristopher Frenz
 
PPT
Security Design Principles.ppt
byDrBasemMohamedElomda
 
PDF
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
PDF
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
PPTX
Owasp Proactive Controls for Web developer
bySameer Paradia
 
PPTX
Web Application Hacking tools .pptx
byGuna Dhondwad
 
PDF
Application Security Testing for Software Engineers: An approach to build sof...
byMichael Hidalgo
 
PPTX
02-overview.pptx
byEmanAzam
 
PPTX
Security Design Principles for developing secure application .pptx
byazida3
 
PPT
Cap 1 - Visao Geral Cibersegurança em Computacao
byrodolfovillaca1
 
PDF
Secure by Design - Security Design Principles for the Working Architect
byEoin Woods
 
PPTX
002 Security Design Principles and some other
byAssadLeo1
 
CHAPTER 9 Design Considerations In this chapter you will
byJinElias52
 
ONE Conference: Vulnerabilities in Web Applications
byNetcetera
 
lecture5-securitydesignprinciplesOf Information
byAsrarMushtaq4
 
Principles for Secure Design and Software Security
byMona Rajput
 
dumil kuandu intheu vantharne some times it takes the kindaung of the going i...
byThiyagaRajan583837
 
ch0001 computer systems security and principles and practices
bystephen972973
 
Survey Presentation About Application Security
byNicholas Davis
 
Application Security Review 5 Dec 09 Final
byManoj Agarwal
 
An Introduction to Secure Application Development
byChristopher Frenz
 
Security Design Principles.ppt
byDrBasemMohamedElomda
 
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
Owasp Proactive Controls for Web developer
bySameer Paradia
 
Web Application Hacking tools .pptx
byGuna Dhondwad
 
Application Security Testing for Software Engineers: An approach to build sof...
byMichael Hidalgo
 
02-overview.pptx
byEmanAzam
 
Security Design Principles for developing secure application .pptx
byazida3
 
Cap 1 - Visao Geral Cibersegurança em Computacao
byrodolfovillaca1
 
Secure by Design - Security Design Principles for the Working Architect
byEoin Woods
 
002 Security Design Principles and some other
byAssadLeo1
 

More from Mohammed Fazuluddin

PDF
Text to diagram generator
byMohammed Fazuluddin
 
DOCX
jee iit free books without registration - jeeiitannooks.in
byMohammed Fazuluddin
 
PDF
Cloud Providers and Their Key Features Explained
byMohammed Fazuluddin
 
PDF
Database Performance Handling : A comprehensive guide
byMohammed Fazuluddin
 
PDF
Design patterns Q&A | Important question and answers
byMohammed Fazuluddin
 
PDF
Software-Requirements-to-System-Design Basics
byMohammed Fazuluddin
 
PDF
MEAN-vs-MERN-A-Developers-Guide and Explanation
byMohammed Fazuluddin
 
PDF
Cloud AI Deployment Design Patterns - Learn the Basic Deployment Patterns
byMohammed Fazuluddin
 
PDF
Auto-scaling-real-time-software-applications-and-best-practices.pdf
byMohammed Fazuluddin
 
PDF
Java Version(v5 -v23) Features with sample code snippet
byMohammed Fazuluddin
 
PDF
Cloud Architecture Framework Pillar’s.pdf
byMohammed Fazuluddin
 
PDF
Implementing Generative AI and Machine Learning on GCP: Architectures, Use Ca...
byMohammed Fazuluddin
 
PDF
LEVERAGING AWS GENERATIVE AI: ARCHITECTURAL INSIGHTS AND REAL-WORLD IMPLEMENT...
byMohammed Fazuluddin
 
PDF
Basics of GraphQL : Unlocking the Power of GraphQL
byMohammed Fazuluddin
 
PPTX
SQL Injection Introduction and Prevention
byMohammed Fazuluddin
 
PPTX
DOMAIN DRIVER DESIGN
byMohammed Fazuluddin
 
PPTX
New Relic Basics
byMohammed Fazuluddin
 
PPTX
Terraform Basics
byMohammed Fazuluddin
 
PPTX
Rest API Security - A quick understanding of Rest API Security
byMohammed Fazuluddin
 
PPTX
Software architectural patterns - A Quick Understanding Guide
byMohammed Fazuluddin
 
Text to diagram generator
byMohammed Fazuluddin
 
jee iit free books without registration - jeeiitannooks.in
byMohammed Fazuluddin
 
Cloud Providers and Their Key Features Explained
byMohammed Fazuluddin
 
Database Performance Handling : A comprehensive guide
byMohammed Fazuluddin
 
Design patterns Q&A | Important question and answers
byMohammed Fazuluddin
 
Software-Requirements-to-System-Design Basics
byMohammed Fazuluddin
 
MEAN-vs-MERN-A-Developers-Guide and Explanation
byMohammed Fazuluddin
 
Cloud AI Deployment Design Patterns - Learn the Basic Deployment Patterns
byMohammed Fazuluddin
 
Auto-scaling-real-time-software-applications-and-best-practices.pdf
byMohammed Fazuluddin
 
Java Version(v5 -v23) Features with sample code snippet
byMohammed Fazuluddin
 
Cloud Architecture Framework Pillar’s.pdf
byMohammed Fazuluddin
 
Implementing Generative AI and Machine Learning on GCP: Architectures, Use Ca...
byMohammed Fazuluddin
 
LEVERAGING AWS GENERATIVE AI: ARCHITECTURAL INSIGHTS AND REAL-WORLD IMPLEMENT...
byMohammed Fazuluddin
 
Basics of GraphQL : Unlocking the Power of GraphQL
byMohammed Fazuluddin
 
SQL Injection Introduction and Prevention
byMohammed Fazuluddin
 
DOMAIN DRIVER DESIGN
byMohammed Fazuluddin
 
New Relic Basics
byMohammed Fazuluddin
 
Terraform Basics
byMohammed Fazuluddin
 
Rest API Security - A quick understanding of Rest API Security
byMohammed Fazuluddin
 
Software architectural patterns - A Quick Understanding Guide
byMohammed Fazuluddin
 

Recently uploaded

PDF
A Simple Guide to Real Estate Tokenization on XRP Ledger.pdf
byemmajoh2025
 
PDF
How PayPal Account Verification Works – Complete Guide for Online Businesses
byjhdhj3989
 
PDF
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
PDF
AI-Powered Alert Analysis with ClickHouse - DB Mastery Jan'26
byAlkin Tezuysal
 
PDF
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
PDF
Web3 - Applications and Architectures - History and Horizons
byGokul Alex
 
PDF
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
PPTX
Jisc Equipment Data Service Update Workshop 3 December 2025
byJisc
 
PDF
Certified AI-Empowered SAFe Release Train Engineer.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
PDF
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
PDF
Why AI Girlfriends Are the Future of Digital Companionship
byAi Angels
 
PDF
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
PDF
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
PDF
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
PDF
7 Essential Types of Penetration Testing Services Every Business Should Under...
bypandeydevika621
 
PDF
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
PDF
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
PDF
Real-Time AI at Scale Masterclass - Challenges of AI at Scale
byScyllaDB
 
PDF
Fortinet Certified Fundamentals in Cybersecurity
byVICTOR MAESTRE RAMIREZ
 
PDF
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
A Simple Guide to Real Estate Tokenization on XRP Ledger.pdf
byemmajoh2025
 
How PayPal Account Verification Works – Complete Guide for Online Businesses
byjhdhj3989
 
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
AI-Powered Alert Analysis with ClickHouse - DB Mastery Jan'26
byAlkin Tezuysal
 
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
Web3 - Applications and Architectures - History and Horizons
byGokul Alex
 
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
Jisc Equipment Data Service Update Workshop 3 December 2025
byJisc
 
Certified AI-Empowered SAFe Release Train Engineer.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
Why AI Girlfriends Are the Future of Digital Companionship
byAi Angels
 
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
7 Essential Types of Penetration Testing Services Every Business Should Under...
bypandeydevika621
 
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
Real-Time AI at Scale Masterclass - Challenges of AI at Scale
byScyllaDB
 
Fortinet Certified Fundamentals in Cybersecurity
byVICTOR MAESTRE RAMIREZ
 
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 

Security Design Concepts

  • 1.
  • 2.
    TOPICS • Overview • SecurityDesign Aspects • Application Security Design Concepts • Application Security Guidelines • Security Architecture/Design Analysis • Security Risk Assessment And Assurance • Security Infrastructure With Interoperable Components
  • 3.
  • 4.
  • 5.
    OVERVIEW • Application securityhas always been a risk and it is always ignored by assuming that the firewalls will protect everything. • Many application attacks are happening even we have layered perimeter security, corporations need to realize the threat and raise its priority. • While designing the application the architect team need to work on security features with application teams to incorporate this life cycle within the various development styles that are being used. • To avoid the security risks , tools/products need to be acquired to perform risk assessment and assurance of the systems and applications that are being deployed. • New applications need to use the security infrastructure from the start and the older applications need to start migrating towards it.
  • 6.
    OVERVIEW • In architecturaldesigns need to be planned for the analysis of the vulnerabilities and a common, centralized security infrastructure. • While designing the application architecture we need to understand the functional, performance, cost and process requirements from a security perspective. • The infrastructure may provide the security components in a certain language and the application might be using a different language. • Standards for systems and applications need to be established and the guidelines, processes and checklists need to be developed for supporting the application security lifecycle.
  • 7.
  • 8.
    Principles of SoftwareSecurity: • Secure the weakest link. • Practice defense in depth. • Fail securely- If your software has to fail, make sure it does it securely. • Follow the principle of least privilege. • Compartmentalize- Minimize the amount of damage that can be done by breaking the system into units. • Keep it simple- Complex design is never easy to understand. • Promote privacy- Try not to do anything that compromises the privacy of the user. • Remember that hiding secrets is hard. • Be reluctant to trust- Instead of making assumptions that need to hold true, you should be reluctant to extend trust. • Use your community resources- Public scrutiny promotes trust. OVERVIEW
  • 9.
    Software Security BestPractices: • Institute awareness programs. • Perform application assessments. • Capture security requirements. • Implement secure development practices. • Build vulnerability remediation procedures. • Define and monitor metrics. • Publish operational security guidelines. OVERVIEW
  • 10.
  • 11.
    SECURITY DESIGN ASPECTS Authentication: •Authentication is used to determine the legitimacy of a user who wants to access the application. • Different levels of authentication can be used to protect the application based on the risk associated with the application. • Sensitivity of the data, application functionality, application architecture (the more distributed it is, the more the risk), user base could be factors determining the risk. • Every user may not need access to the all the application resources including business logic and/or data. • The resources need to be grouped based on the functional roles different users have, this way of assigning privileges to a user is called the roles based access control (RBAC) method.
  • 12.
  • 13.
    SECURITY DESIGN ASPECTS Authentication: •Once a user is authenticated and is authorized to perform a business function (transaction), there may be data/control transfer between different processes on different systems. • If the data is corrupted or compromised, there will be integrity and confidentiality issues. In addition to protecting data in transit, protection of static data is required to provide integrity and confidentiality. • If the configuration files containing the connection and initialization attributes of an application were compromised, integrity and confidentiality of the application resources could be severely compromised. • The cost of implementing a solution varies widely with the different authentication technology that is used. In some cases, where there is a need for strong authentication, a combination of these factors should be used.
  • 14.
    SECURITY DESIGN ASPECTS Confidentiality: •Confidentiality keeps the data secret from all but those who are authorized to see it. Various cryptographic methods can be used to provide confidentiality component. • ‘Cryptography is the art or science encompassing the principles and methods of transforming an intelligible message into one that is unintelligible and then retransforming that message back to its original form’. • Encryption transforms plain text to cipher text using a secret key and decryption transforms cipher text back to plain text using the secret key. • The cryptography method using the same secret key to encrypt and decrypt the messages is called symmetric and the one using different keys is called asymmetric. • Application data can be kept confidential using cryptography, if the secret key can be secured.
  • 15.
    SECURITY DESIGN ASPECTS Auditing: •Auditing is another security feature that needs to be implemented in the application. • Since no application can ever be completely invulnerable to threats, auditing must be in- place to provide data needed for incident response. • The auditing feature should provide a trail of which user did what and when at any given point of the application lifetime. • The final component, Non-repudiation provides proof of existence of message. • The goal of a nonrepudiation component is to collect, maintain, make available irrefutable evidence.
  • 16.
    SECURITY DESIGN ASPECTS Integrity: •Integrity is ‘the property that data has not been changed, destroyed, or lost in an unauthorized or accidental manner’. • Incorporating integrity into an application will inform the recipient of data modification by unauthorized users during storage or transmittal. • Various hash methods such as SHA-1 or MD5 can provide the integrity component. • Confidentiality is ‘the property that information is not made available or disclosed to unauthorized individuals, entities, or processes [i.e., to any unauthorized system entity]’.
  • 17.
  • 18.
  • 19.
    APPLICATION SECURITY DESIGNCONCPTS • In application design the security parameters needs to be involved with the application team to assist them in implementing proper security technology and/or processes. • The below mentioned security controls needs to be considered as part of security design… • Single Access Point • Session • Roles • Secure Access Layer • Audit • Administration layer
  • 20.
  • 21.
    APPLICATION SECURITY DESIGNCONCEPTS Single Access Point: • User entry into an application should be though a single point. • This feature also saves the user from having to remember multiple passwords which can provide enhanced security by eliminating a need to write down passwords in unsecured places (for example, sticky notes under a keyboard or on a monitor) • Identification and authentication components need to be performed at this point. • Access points to multiple applications can be consolidated to a single point, often called a portal. Also, technologies such as single sign-on are gaining popularity. • Single sign-on enables a single access point into multiple applications by authenticating once. • Backdoors should be avoided and application entry should be restricted to a single point for all types of users, including administrators.
  • 22.
  • 23.
    APPLICATION SECURITY DESIGNCONCEPTS Session: • Users should not have to authenticate multiple times while they are traversing an application, their current interaction with the application needs to be maintained by the application. • This session must be unique and separately maintained for every user. • If a user is away from the application for sometime, the session should help the application from determining the user and their current state with the application. • Authentication details like last active time can help the application determine whether it needs to authenticate the user again per the authentication policy.
  • 24.
  • 25.
    APPLICATION SECURITY DESIGNCONCEPTS Roles: • Users have different needs in an application. Users should be given different privileges (read, change, add, delete) to various application resources within an application. • Users are grouped into a certain role and privileges to required application resources will be given to that role. Once that is done, all the users who perform that role are assigned that role instead of each privilege individually. • Instead of changing a privilege for every user, the administrator will just have to change it for that role. • Check points have to be established at every resource level where a privilege to a user needs to be defined. These check points should query the access control data to make a decision for the user to access the resource.
  • 26.
  • 27.
    APPLICATION SECURITY DESIGNCONCEPTS Secure Access Layer: • Applications use various mechanisms to communicate with the user or other applications. • Depending on the classification of the data that is exchanged or control that is transferred during the communication, the access mechanisms and access layer need to be secured. • Confidentiality and integrity components need to be used to secure the communication, as well as static data. For example, SSL can be enabled on a web server using certificates to provide authentication of the application to the user, confidentiality between the application and the end user and integrity of the information transferred.
  • 28.
  • 29.
    APPLICATION SECURITY DESIGNCONCEPTS Audit: • Components need to be placed in an application for tracking the actions being performed on the application resources. • The placement of these components should help tracing any application event. • Proper backup and recovery procedures need to be implemented for the audit output using retention guidelines. Also, the audit output should be properly formatted to help searches or statistic generation. • The output should definitely contain the successful and unsuccessful attempts by a user accessing a resource at the single access point and all the checkpoints. • Adding a timestamp, message code and message description will add value to the output.
  • 30.
  • 31.
    APPLICATION SECURITY DESIGNCONCEPTS Administration layer: • Easy to use administration functionality needs to be provided to the application administrators to maintain user identification attributes, authentication and authorization information. • The administration functionality needs to be accessible to the administrators though the single entry point and proper authorization. • Some features that would help application administrators are: • Support for RBAC(creating roles and assigning them to users) • User administration(enable/disable users) • Application scan facility to generate new access points when changes are made to existing applications
  • 32.
    Logic analysis: • Logicanalysis evaluates the equations, algorithms, and control logic of the software design. Data analysis: • Data analysis evaluates the description and intended usage of each data item used in design of the software component. The use of interrupts and their effect on data should receive special attention to ensure interrupt handling routines do not alter critical data used by other routines. Interface analysis: • Interface analysis verifies the proper design of a software component's interfaces with other components of the system, including computer hardware, software, and end-users. Constraint analysis: • Constraint analysis evaluates the design of a software component against restrictions imposed by requirements and real-world limitations. The design must be responsive to all known or anticipated restrictions on the software component. These restrictions may include timing, sizing, and throughput constraints, input and output data limitations, equation and algorithm limitations, and other design limitations. SECURITY ARCHITECTURE/DESIGN ANALYSIS
  • 33.
    Secure code reviews,inspections, and walkthroughs: • Secure Code reviews are conducted during and at the end of the development phase to determine whether established security requirements, security design concepts, and security-related specifications have been satisfied. Informal reviews: • Informal secure code reviews can be conducted on an as-needed basis. To conduct an informal review, the developer simply selects one or more reviewer(s) and provides and/or presents the material to be reviewed. The material may be as informal as pseudo-code or hand-written documentation. Formal reviews: • Formal secure code reviews are conducted at the end of the development phase for each software component. The client of the software appoints the formal review group, who may make or affect a "go/no-go" decision to proceed to the next step of the software development life cycle. Security testing: • Software security testing, which includes penetration testing, confirms the results of design and code analysis, investigates software behavior, and verifies that the software complies with security requirements. Special security testing, conducted in accordance with a security test plan and procedures, establishes the compliance of the software with the security requirements. SECURITY ARCHITECTURE/DESIGN ANALYSIS
  • 34.
    APPLICATION SECURITY GUIDELINES •Application security development guideline needs to be created, specifying various technologies and a coding style to eliminate vulnerabilities and help mitigate risk. • A common vulnerability of application is buffer overflow. • Authorization needs to be handled carefully, just defining roles and assigning those to users will not completely secure authorization. • Situations where multiple roles are assigned to the same user with different types of privilege on the same resource need to be considered. • Error/exception handling mechanisms used should not display too many development details. • System configuration needs to be analyzed, never use the default configuration. • Some coding scheme needs to be used which could be cross-referenced to an error description database.
  • 35.
    SECURITY RISK ASSESSMENTAND ASSURANCE • Applications need to be assessed at the business level to ascertain the risk based on information compromise, unauthorized access and availability for determining the security level that needs to be assigned to them. • After an application has been developed and functionally tested and before deploying it to production environment, we need to meticulously perform a security risk assessment and assurance test. • This test will help ensure the total system is in compliance based on the security level assigned to it. These tests need to be mandated on all applications, newly developed or changing an existing application or a purchased product. • Application risk checklists need to be developed to assure that proper security controls have been placed at the appropriate locations within the application. • The checklist must be updated at a regular interval to accommodate newer technologies and threats.
  • 36.
    SECURITY RISK ASSESSMENTAND ASSURANCE • The checklist should contain all aspects of logical access for various security levels including: • User identification (registration process). • Authentication (level, password strength, sign-on attempts, account lockout policies, helpdesk processes on unlocking, session tracking) – authorization. • Sensitive data handling(encryption, hashing). • Auditing features. • Security administration. • Tools, products or processes need to be employed to standardize the methodology of security assessments. • Application contingency plans should be reviewed to make sure all the backup and recovery plans are up to date so that there is no disruption of service (availability).
  • 37.
    Software security assuranceprogram should ensure that: • A security evaluation has been performed for the software. • Security requirements have been established for the software. • Security requirements have been established for the software development and/or operations and maintenance (O&M) processes. • Each software review, or audit, includes an evaluation of the security requirements. • A configuration management and corrective action process is in place to provide security for the existing software and to ensure that any proposed changes do not inadvertently create security violations or vulnerabilities. • Physical security for the software is adequate. SECURITY RISK ASSESSMENT AND ASSURANCE
  • 38.
  • 39.
    SECURITY INFRASTRUCTURE WITH INTEROPERABLECOMPONENTS • The infrastructure needs to be interoperable with any application and be maintained by a team that can keep pace with the latest standards. • Accomplishing the above and offering security as a centralized component can be a tedious and painful task. Eventually, the Enterprise will realize the fruits - cost savings and controlled environment. • This centralized infrastructure should: • Provide Identity, authentication, authorization, confidentiality, integrity non-repudiation and audit components. • Adhere to industry standards. • Easily manageable and scalable. • Provide the framework which needs to adapt to newer technologies with less effort (security is a race where the good guys always need to be in front of the bad guys). • To provide the above infrastructure, the security team needs to analyze the existing applications and define the requirements.
  • 40.
    THANKS • If youfeel it is helpful and worthy to share with other people, please share the same