Bad Posted March 17, 2021 Share Posted March 17, 2021 I just received a project from my Advanced Secure Programming module and I need help on just starting really. Here is the description: The project requires the implementation of a secure application (of student’s choice) in any programming language. The application should cover at least 4 out of the seven pernicious kingdoms. (https://cwe.mitre.org/documents/sources/SevenPerniciousKingdoms.pdf): • Input validation and representation (mandatory) • API abuse • Security features • Time and state • Errors (mandatory) • Code quality • Encapsulation I just need an idea on what I could do really, if anyone can provide any examples or places I could learn certain things I would really appreciate it, as I'm not the best at coding. All help appreciated! Link to comment Share on other sites More sharing options...
Endy0816 Posted March 18, 2021 Share Posted March 18, 2021 I suggest picking the programming language you're most comfortable with and then determining the type of application you want to make. A simple practical use application will tend to be easier to develop IMO. For the next part you'll want to imagine an attacker or a user randomly sending inputs; and attempt to defend against all undesirable outcomes that might result. You might want to for instance allow the user to enter a password as a security feature, but that entered information will then require input validation. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now