Security Architecture domain focused on securing systems part while Application Security domain focuses on securing software and applications from their development phase to implementation phase to maintenance phases. The domain highlights that security should be the component of every cycle of Software Development Life Cycle (SDLC). Applications include agents, applets, software, databases, data warehouses, knowledge-based systems. The domain discusses concepts like data mining, data ware-housing, intelligent systems and elaborates on what application controls are needed to ensure confidentiality, integrity and availability of information system. The domain also touches on concepts of penetration testing with regards to applications.
No comments:
Post a Comment