snhu/cs-305
1
0
Fork 0
mirror of https://github.com/didyouexpectthat/cs-305.git synced 2024-10-17 23:00:20 -07:00
Code Issues Packages Projects Releases Wiki Activity
2 Commits 1 Branch 0 Tags 854 KiB
main
Go to file
Cody Cook 5a57448a49
Create README.md
2023-10-15 17:36:08 -07:00
Artemis Financial Practices for Secure Software Report.docx Upload report 2023-10-15 17:21:39 -07:00
README.md Create README.md 2023-10-15 17:36:08 -07:00

README.md

Artemis Financial Practices for Secure Software Report README

Introduction

Artemis Financial is well known across the financial industry, renowned for their top-tier services and customer-centric solutions. This report details the security assessment undertaken to identify and address potential software vulnerabilities in Artemis Financial's digital infrastructure.

Achievements and Importance of the Project

  • Conducted a deep dive to identify software security vulnerabilities within Artemis Financial's systems.
  • Strategically refactored sensitive areas of code to uphold the highest security standards.

The Essence of Secure Coding: Secure coding acts as a shield, defending sensitive data, upholding the legacy of the institution, and endorsing unbreakable trust among users. It's a proactive step against data breaches and potential financial or reputation risks.

Contribution to Artemis Financial: A fortified software infrastructure does more than just repel cyber threats; it cements trust with clientele, ensures regulatory compliance, and safeguards the financial assets and reputation of the institution.

Delving Into the Vulnerability Assessment

The process of vulnerability assessment was both enlightening and demanding. While many vulnerabilities were immediately evident, others required a deeper, more nuanced approach. Many of the security vulnerabilities can be resolved by updating the dependencies of the application; however, some of the vulnerabilities apply to aspects of the code that were not in use from the application, which reduces the likelyhood of attack. Having done the deep dive and thus a great understanding of the application, it was easy to deduce which security vulnerabilities were not pressing to resolve.

Elevating Security Defenses

To reinforce Artemis Financial's software defenses, we:

  • Instituted rigorous input validation protocols.
  • Crafted secure error handling mechanisms.
  • Infused cryptographic standards for uncompromised data integrity.
  • Applied the principle of least privilege across systems.

Roadmap for Future Security Assessments: Upcoming evaluations might incorporate tools such as OWASP ZAP, Burp Suite, and Nessus. Our mitigation strategy will be molded by the nature, severity, and potential repercussions of the vulnerabilities discovered.

Verification of Software Integrity

Post-refactoring, a battery of tests were deployed to guarantee both operational functionality and impenetrable security. Tools like static code analyzers were harnessed to ensure our refactoring efforts hadn't inadvertently introduced fresh vulnerabilities.

Adopted Resources & Best Practices

  • Leveraged state-of-the-art static code analysis utilities to unearth vulnerabilities.
  • Heeded industry-standard secure coding protocols and practices.
  • Employed a mix of official documentation and expert forums for niche security challenges.

Portfolio Material for Prospective Employers

From this project, invaluable takeaways include:

  • Showcasing the refactored code that underlines the advanced security transformations made.
  • Sharing the comprehensive vulnerability assessment report, spotlighting both detected challenges and the resolutions effected.

Closing Remarks: This endeavor not only fine-tuned technical proficiencies but also underscored the pivotal role secure coding plays in the finance sector, especially for an institution as esteemed as Artemis Financial.