Secure coding guidelines (OWASP Top Ten)
Description
Simpl-Open shall enforce secure coding practices by adhering to OWASP Top Ten principles to mitigate security vulnerabilities.
SMART Breakdown
- Specific: The system must comply with OWASP Top Ten security guidelines, including input validation, secure authentication, injection prevention, and secure data storage.
- Measurable: Measured through security code reviews, automated security scanning (e.g., SonarQube), and penetration testing results.
- Achievable: Achieved by integrating secure coding practices into the SDLC, performing regular security audits, and training developers on OWASP security best practices.
- Realistic: Secure coding is an industry standard and critical for preventing security breaches.
- Timely: Implemented from the start of development, with ongoing monitoring and periodic security assessments.
Detailed Non-Functional Requirement | Issue ID: SIMPL-9934 | Status: Proposed |