?
Solved

When do you add security to your apps?

Posted on 2016-09-02
3
Medium Priority
?
70 Views
Last Modified: 2016-09-02
When building a new php application do you create the security functions, validation etc at the same time as the functionality, or do you add it once you have the basic of the app working?

I created some very effective security functions, which seem to be slowing down development/testing. Wondering how others deal with this.
0
Comment
Question by:Stephen Forlance
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 84

Accepted Solution

by:
Dave Baldwin earned 1000 total points
ID: 41782404
Security and validation pretty much must be built into the functions.  It is difficult to add it back in.  But just like anti-virus, it will slow things down.  Maybe you're 'overdoing' it.
0
 
LVL 111

Assisted Solution

by:Ray Paseur
Ray Paseur earned 500 total points
ID: 41782438
You might want to show us the code that is slowing things down.  We might be able to spot the issues.  Please include your test case information, so we can replicate your test environment and see the slowdown in action.

You might consider using the Laravel framework.  It will handle validation and security for you, with state-of-the-art processes that will not slow you down.

If you've created effective security functions, but wonder about performance, you might want to post them on GitHub and ask the open-source community to have a look, fork, send pull requests, etc.
0
 
LVL 53

Assisted Solution

by:Scott Fell, EE MVE
Scott Fell,  EE MVE earned 500 total points
ID: 41782446
I would say it depends.  

I like to add log in from the start because many functions rely on logged in state (at least for what I work on).  But when I am creating a new page that may be more complex, I may create a single page with only my raw server side code.  Once I am happy with my logic, I add a new page and incorporate what I created in my test page.
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any more questions? Just ask.
Make the most of your online learning experience.
The viewer will learn how to count occurrences of each item in an array.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question