This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Talk:Application Security Architecture Cheat Sheet

From OWASP
Revision as of 23:22, 2 April 2012 by Dennis Groves (talk | contribs) (Application Security Architecture Feedback.)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Aloha Jim.

I noticed some thing are missing here - taking a page from OWASP SAMM.

Any application architecture must always begin with requirements. I have found requirements to come from the following sources:

- Laws - Standards - Business Policies - Customers - Operations - Business Stakeholders - Project Stakeholders

All of these governance issues inform the rest of the architecture - in other words it is cross-cutting. Layers in the architecture cake are:

Business View (Context) Architect View (Concept) Designers View (Logical) Builders View (Physical) Trade View (Component) Facilities View (Operational)

Retrieved from "https://wiki.owasp.org/index.php?title=Talk:Application_Security_Architecture_Cheat_Sheet&oldid=127317"