First page Back Continue Last page Overview Graphics
S1.2: General APPSec
Protection Mechanisms
- Document your software
- Yes – this means UML and Data Flow Diagrams
- Unified Modeling Language
- Good Programming and Design Practices
- Respect GIGO
- Leverage the Synergy of Parallelistic Realities
- Ummm – y’know – use _lots_ of Snort probes…
- Consider the simplest representation of the data
- Try to constrain data type flow
- Understand the systematic structure
- Strive for ISN or at least respect PoI