Professional Documents
Culture Documents
Lec # - 5the Security Systems Development Life Cycle
Lec # - 5the Security Systems Development Life Cycle
Lec # - 5the Security Systems Development Life Cycle
DEVELOPMENT LIFE
CYCLE
LEC 5
THE SECURITY SYSTEMS DEVELOPMENT LIFE
CYCLE
• The systems development life cycle (SDLC) is a methodology for the design and
implementation of an information system.
• A methodology is a formal approach to solving a problem by means of a structured
sequence of procedures.
• The traditional SDLC consists of six general phases. If you have taken a system analysis
and design course, you may have been exposed to a model consisting of a different
number of phases.
SDLC WATERFALL METHODOLOGY
SECURITY SDLC PHASES
PHASE 1: INVESTIGATION
• Plain text
• Cipher text
• Encryption
• Decryption
• Cryptography
• Cryptanalyst
• Key
BASICS OF INFORMATION SECURITY
• Plain text
• Plaintext can refer to anything which humans can understand and/or relate to. This may
be as simple as English sentences, a script, or Java code. If you can make sense of what is
written, then it is in plaintext.
CIPHER TEXT
• Cipher text, or encrypted text, is a series of randomized letters and numbers which humans cannot
make any sense of.
• An encryption algorithm takes in a plaintext message, runs the algorithm on the plaintext, and
produces a cipher text.
• The cipher text can be reversed through the process of decryption, to produce the original
plaintext.
• Example: We will encrypt a sentence using Caesar Cipher. The key is 7, which means the letter a
becomes h.
• Plaintext: This is a plaintext.
• Ciphertext: Aopz pz h wshpualea.
ENCRYPTION
• Encryption
• Encryption is the process of translating plain text data (plaintext) into something that
appears to be random and meaningless ( cipher text ).
• Decryption
• Decryption is the process of converting ciphertext back to plaintext.
CRYPTOGRAPHY