SDLC is a framework that defines the process used by organizations to manage and maintain an application from its design phase to its decommission. There are many different SDLC models out there, used in various ways to fit individual circumstances and environments. What most of these SDLCs have in common are the following phases:
- Planning and requirements
- Architecture and design
- Test planning
- Coding
- Testing and results
- Release and maintenance
Until recently, it was common practice to perform security-related activities only as an afterthought. This secure-it-when-its-working-and-making-money technique usually resulted in a large number of issues being discovered too late (or not discovered at all). Fixing ...