security_checklist

Security validation checklist for code and deployments.

synonyms:: security review, security audit, vulnerability assessment checklist:: authentication, authorization, input validation, encryption, logging

Checklist Items

Proper authentication mechanisms must be in place.

synonyms:: identity verification, user login

Authorization and access control must be implemented.

synonyms:: access control, rbac policy

All user inputs must be validated and sanitized.

synonyms:: input sanitization, user input validation

Sensitive data must be encrypted.

synonyms:: tls encryption, ssl encryption, encryption at rest

Security-relevant events must be logged.

synonyms:: audit log, security log, event logging