Exam SY0-601 topic 1 question 56 discussion

Development The developer has to start writing secure code from beginning itself. Which will then be tested, staged and finally production

Don't>>Throw>>Sausage>>Pizza Development>>Test>>Staging>>Production Corny, I know but I remember the order this way.

(B) Development is the first environment created during the SDLC. Secure coding begins there, Staging is the third testing environment which is also call pre-production environment. It's the final testing phase before it is released in the production environment which users can use the finished application product.

The scenario also mentions Cloud service provider--------> PUBLIC CLOUD Ability to block internal HR Appl ------> PRIVATE CLOUD Therefore the answer is HYBRID

Development stage

how is the anser not B, hmmm

Proper, secure coding practices should be applied from the very beginning of the software development process, which is the development stage.

Development, Secure coding should be practiced at all times. The only times practice code should be used is in IED away from the environment

https://livecodestream.dev/post/development-testing-staging-production-whats-the-difference/#when-is-security-considered-in-the-application-development-cycle When Is Security Considered in the Application Development Cycle? Security should always be considered at any stage and in any environment. This means that developers need to think about security when they are coding, and they should also be aware of the potential risks of the libraries and frameworks they are using.

In the software development lifecycle, secure coding practices should be implemented and practiced from the very beginning, which is the development stage. This ensures that security is built into the software from its inception and throughout the development process. By integrating security practices early in the development phase, potential vulnerabilities can be identified and addressed before the software moves on to other stages like testing, staging, or production. This approach helps reduce the risk of security flaws and ensures that the final product is more secure.

Laying emphasis on the proper , secure coding. I’ll code A over B. A staging environment is very similar to a production environment, but it is used for testing purposes before the application is launched in production. This environment tries to simulate as much as possible the final production environment, so tests in staging are more accurate(PROPER) than tests done in development

The Development environment is where software applications and systems are built and coded. It is the initial stage of the software development life cycle (SDLC) where developers write, test, and debug code. Implementing secure coding practices in the Development environment helps to ensure that security considerations are integrated from the early stages of application development. By following secure coding practices during development, such as input validation, secure data handling, and proper use of encryption, developers can mitigate common vulnerabilities and weaknesses that could be exploited in later stages. This proactive approach reduces the likelihood of introducing security flaws and weaknesses that can lead to security breaches and incidents in subsequent environments like Testing, Staging, and Production.

Development

The FIRST environment in which proper, secure coding should be practiced is in the development environment, option B. It is important to implement secure coding practices from the beginning of the software development process, as it is more cost-effective to address security issues early in the development lifecycle rather than later in production or post-production. Secure coding practices can help prevent security vulnerabilities such as injection attacks, buffer overflows, and cross-site scripting. While testing, staging, and production environments are important for ensuring the functionality and stability of the code, secure coding practices should be implemented from the start in the development environment to ensure a strong foundation for the software. (ChatGpt generated answer)

B Secure coding is more than just writing, compiling, and releasing code into applications. To fully embrace secure programming, you also need to create a secure development environment built on a reliable and secure IT infrastructure using secure hardware, software, and services and providers.

B. Development Testing and staging are important steps in the software development life cycle, but they come after the development stage, and should not be the first environments where secure coding is practiced.

B. Development: Proper, secure coding practices should be implemented and followed in the development environment first. This is because it is during the development phase that the code is written and tested before it is deployed to production. By incorporating secure coding practices during development, vulnerabilities, and potential security threats can be identified and addressed before the code is deployed to production, reducing the risk of security incidents.