Assignment
Part 1
1- How does the source of your software code affect the overall security of the system? Justify your position for a general system.
2- Why is it bene?cial to develop a software system in a language that is well known to the development team? What are the risks of using a language that is unknown or less common to them?
3- What protections can you place within an organization on code that is developed externally? Give examples to support your recommendation.
4- How can modular code developed within an organization be helpful or harmful to the security of the system? Justify your position.
5- Why is it important to limit the attack surface of the system? Give examples to support your argument.
Part 2
1- Why is it important to probe and attack a system both at rest and in action? Give examples of information that is provided by each that the other could not provide.
2- Why is it important to simulate the deployment environment as closely as possible when performing a penetration test? What could happen if the conditions vary signi?cantly from the live environment?
3- What advantages do actual attackers have over-penetration testers in attempting to compromise a system? Justify your conclusions.
4- What are the important considerations in choosing a Red Team (or attack team) for your software system? Give examples to justify your position.
5- What are the risks of using a Red Team that is not quali?ed? How could this negatively affect system deployment in the live environment?
Format your assignment according to the following formatting requirements:
1. The answer should be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
2. The response also includes a cover page containing the title of the assignment, the student's name, the course title, and the date. The cover page is not included in the required page length.
3. Also include a reference page. The Citations and references should follow APA format. The reference page is not included in the required page length.