Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).

View the beta site
NIST logo

Publication Citation: Information Security in the System Development Life Cycle

NIST Authors in Bold

Author(s): Annabelle Lee; Tanya L. Brewer;
Title: Information Security in the System Development Life Cycle
Published: September 01, 2004
Abstract: Many system development life cycle (SDLC) models exist that can be used by an organization to effectively develop an information system. Security should be incorporated into all phases, from initiation to disposition, of an SDLC model. This Bulletin lays out a general SDLC that includes five phases. Each of the five phases includes a minimum set of information security tasks needed to effectively incorporate security into a system during its development. It illustrates the information security tasks applicable to each SDLC phase and the relevant references.
Citation: ITLB -
Pages: 6 pp.
Keywords: information systems security, SDLC, System Development Life Cycle
Research Areas: Computer Security, System Development Lifecycle (SDLC)
PDF version: PDF Document Click here to retrieve PDF version of paper (1MB)