CISSP 6: Software Development

Agile

V-shaped

Waterfall

Iterative

Source code consists of human-readable statements. Object code is the binary machine language executed by the CPU (central processing unit).

Source code expresses a program's required function. Object code is the binary machine language executed by the CPU (central processing unit).

Object code consists of human-readable statements. Source code is the binary machine language executed by the CPU (central processing unit).

Source code consists of human-readable statements. Object code expresses a program's required function.

Compiled

Assembly

Interpreted

None of the options

Inheritance

Encapsulation

Polymorphism

Polyinstantiation

As DevOps focuses primarily on rapid delivery of new and updated code into operational use, it relies on other processes to address security considerations. DevSecOps integrates security review and assessment into the total design, development and deployment workflow.

DevSecOps integrates security testing and assessment into the operational use of software, while DevOps performs security testing and assessment activities throughout the lifecycle.

Very little. Originally, DevOps did not explicitly consider security activities in its rapid development and release to operational use of new and modified software. Market pressure, and the creation of the competing DevSecOps model, has caused these two models to become more similar than different.

DevOps emphasizes the use of IDEs and CM tools, while DevSecOps emphasizes the use of CI and CD processes.

CI requires that changes to code are frequently updated to a code repository and tested using an automated process. CD focuses on moving the changes into production.

CD requires that changes to code are frequently updated to a code repository and tested using an automated process. CI focuses on moving the changes into production.

CI is a purely manual process whereby changes to code are fed directly back into existing code without prior testing. CD focuses on quickly responding to the customer’s needs.

CD is a purely manual process whereby changes to code are fed directly back into existing code without prior testing. CI focuses on quickly responding to the customer’s needs.

Atomicity 

Consistence 

Isolation 

Durability 

SDLC

SDLC

SLDC

SLCD

Record, Field, Database, File (Table)

Database, Record, Field, File (Table)

Database, File (Table), Record, Field

Database, File (Table), Field, Record