security_checklist

Security validation checklist for code and deployments.

synonyms:: security review, security audit, vulnerability assessment checklist:: authentication, authorization, input validation, encryption, logging

Checklist Items

Proper authentication mechanisms must be in place.

synonyms:: auth, login, identity verification, credentials

Authorization and access control must be implemented.

synonyms:: access control, permissions, roles, rbac

All user inputs must be validated and sanitized.

synonyms:: input sanitization, validation, user input, sanitize

Sensitive data must be encrypted.

synonyms:: encrypt, encrypted, ssl, tls, https

Security-relevant events must be logged.

synonyms:: audit log, security log, event logging