security by design – Page 2

Security by Design and NIST 800-160, Part 4: Technical Processes From ‘Go’ to Disposal

Posted on May 27, 2021 by George Platsis

Even if you are not an engineer, NIST 800-160 Volume 1 could help you in your work to understand security by design. It shows what you need to secure your information system. In the other blogs in this series, we’ve summarized the major points of the document. In the final installment, we’ll take a look at […]

The post Security by Design and NIST 800-160, Part 4: Technical Processes From ‘Go’ to Disposal appeared first on Security Intelligence.

Continue reading Security by Design and NIST 800-160, Part 4: Technical Processes From ‘Go’ to Disposal→

Security by Design and NIST 800-160, Part 3: Technical Processes

Posted on May 20, 2021 by George Platsis

Picking up where we left off on the security-by-design thinking offered by NIST 800-160 Volume 1, we move onward in Chapter 3, focusing on the technical management processes. Let’s look at some security design principles at the technical processes level. Technical Management Processes Chapter 3.3 shows us eight processes. Like we did in Part 2 […]

The post Security by Design and NIST 800-160, Part 3: Technical Processes appeared first on Security Intelligence.

Continue reading Security by Design and NIST 800-160, Part 3: Technical Processes→

Security by Design and NIST 800-160, Part 2: Life Cycle Processes

Posted on May 13, 2021 by George Platsis

NIST 800-160 Volume 1 features many guidelines of interest to cybersecurity experts looking to boost their defenses through security by design. As we saw in the first post in this series, the key principles of this document provide a good footing for security. Next, let’s take a look at how the security design principles laid […]

The post Security by Design and NIST 800-160, Part 2: Life Cycle Processes appeared first on Security Intelligence.

Continue reading Security by Design and NIST 800-160, Part 2: Life Cycle Processes→

Security by Design and NIST 800-160, Part 1: Managing Change

Posted on May 6, 2021 by George Platsis

Building a house requires a blueprint. When it comes to building systems, National Institute of Standards and Technology’s (NIST) documents about security by design are some of the most reliable blueprints. As systems become more complex, they’re also more likely to be fragile. Meanwhile, we continue to add new devices, apps and tools into our […]

The post Security by Design and NIST 800-160, Part 1: Managing Change appeared first on Security Intelligence.

Continue reading Security by Design and NIST 800-160, Part 1: Managing Change→

Server Upload to presigned URL

Posted on April 29, 2021 by vishnuvp

I am writing a ReST service which enables user to get a tar archive of a set of requested documents. When the request succeeds, the service should upload the file to a pre-signed URL that points to an s3 bucket or azure blob storage or a p… Continue reading Server Upload to presigned URL→

Can we prevent users from generating a QR code with edited information

Posted on March 19, 2021 by Dennis Jaheruddin

Currently there is this design of two apps that work together:

Proof app: On customers phone, takes in a textcode and creates a QR code
Scanner app: On hosts phone, Scans the QR code and displays some information like birthday, initial an… Continue reading Can we prevent users from generating a QR code with edited information→

Five Things Security and Development Teams Should Focus on in 2021

Posted on January 21, 2021 by Zoë Rose

As we say goodbye to 2020 and spend time reflecting on the industry changes, reassess our workflows and procedures in order to identify where 2021 will bring us, it’s a brilliant time to also address our security practices and ways we can bring improve… Continue reading Five Things Security and Development Teams Should Focus on in 2021→

Security by Design y UEM: el enfoque de la ciberseguridad en 2021

Posted on December 28, 2020 by Steve Ramírez López

El año 2020 se cierra cómo uno de los períodos más agitados en relación con los ciberataques; la declaración de una pandemia a nivel mundial generó toda clase de desinformación y en nombre del COVID-19 muchas compañías cayeron en …
The post Security b… Continue reading Security by Design y UEM: el enfoque de la ciberseguridad en 2021→

If you were to design a secure Consumer Device

Posted on November 17, 2020 by Marek Niepieklo

what security/privacy features would you include in the design according to MoSCoW method?

Continue reading If you were to design a secure Consumer Device→

Privacy-by-Design Vs Security-by-Design [closed]

Posted on September 29, 2020 by adeguk Loggcity

I recently came across the term privacy-by-design as one of the requirements of what I am currently on but I new to the idea. Is there anyone who can help with the definition of this concept (privacy-by-design) as a security professional a… Continue reading Privacy-by-Design Vs Security-by-Design [closed]→