-
MikaelKrats authoredMikaelKrats authored
Weekly report week 1
Everyone: set their local development environment
Mikael: Created a document for way of working and wrote 1 user story
Veera: Wrote 2 user stories
Rayan: Wrote 2 user stories
Arno: started setting up the project in GitLab and in Azure
Top 5 security risks considered (Not much was yet done)
A01:2021-Broken Access Control Different roles and their access levels to the system were defined. Access control was discussed.
A07:2021-Identification and Authentication Failures Authentication was decided to be left to third party platform. It was discussed that no default or unsecure credentials should be deployed to the final product.
A09:2021-Security Logging and Monitoring Failures Design of the monitoring view was discussed
A04:2021-Insecure Design Security taken into account in early design. Security related user stories were discussed.
A05:2021-Security Misconfiguration It was discussed that no default account should be ever left on the finished product