The Systems Development Life Cycle (SDLC) is a commonly used "methodology" for creating applications and systems.
The SDLC steps vary depending on who you talk to but they usually involve a lot of the same steps: initiation/planning, analysis, design, develop/test, implement, maintenance/support.
PCI DSS requirement 6.3 addresses secure application development, commonly called "S-SDLC".
Microsoft has some useful info on this to show how security should be integrated into software development [HERE]
No comments:
Post a Comment