13 Security engineering
Objectives
The objective of this chapter is to introduce security issues that you should consider when you are developing application systems. When you have read this chapter, you will:
understand the importance of security engineering and the difference between application security and infrastructure security;
know how a risk-based approach can be used to derive security requirements and analyze system designs;
know of software architectural patterns and design guidelines for secure systems engineering;
understand why security testing and assurance is difficult and expensive.
Get Software Engineering, 10th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
