Chapter 2
Designing Secure Systems
Application security must be designed and built into your solutions from the start, and in this chapter I ll focus on how to accomplish this goal by covering common security mistakes, security principles to live by, security design by threat modeling, and a veritable cornucopia of threats and solutions. This chapter discusses security design issues that should be addressed by designers, architects, and program managers. This does not mean that developers and testers should not read this chapter in fact, developers and testers with an understanding of threats and secure design will create more secure software. There is a caveat, however. Developers and testers should not sway the design based purely on their technical knowledge. Designers should be wary of this oft-made mistake. Let s get started.