Before a company or an institution starts developing (or orders) an application, it needs to define detailed requirements for such an application, also in the area of security. Otherwise, many misunderstandings may occur, especially when it comes to project finalisation and securing sufficient quality in the product’s security.

Our company offers assistance in development of requirements for application security. They may relate to functional issues (e.g. selection of proper authentication or access control mechanisms) as well as other (e.g. input data validation, output data encryption, connection with a database, security tuning).

Requirements are developed based on recognised standards (e.g. OWASP guidelines or Common Weakness Enumeration) and tailored to the Client’s needs and the application’s characteristics.

Related services

• Opinion on planned security control changes
• Application security testing
• Periodic application tests

Applications