Use code architecture patterns to mitigate threats against system assets
Artis-Secure creates secure patterns in the following areas.
Data Validation
- Defense patterns against Injection attack
- Proper Regular Expression use
- Intelligent Output Encoding
Authentication & Authorisation
- Proven patterns for Basic, token-based, Two-factor/Multi-factor
- Proven integration using OAuth2, OpenID Connect, SAML and XACML
Configuration
- Secure patterns for accessing resources
- Secure application configuration in highly complex heterogeneous systems
Sensitive Data
- Good practice around Personally Identifiable Information (PII)
- Secure use of Primary Account Data (PAN)
Cryptography
- Proper Encryption patterns (symmetric/asymmetric)
- Use of Hash functions and Digital signatures
- Forward-thinking Key management frameworks