You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

App4Legal adopts a secure development lifecycle approach throughout the different stages of the development.

App4Legal secure SDLC involves security testing into the existing development process. This includes writing security requirements alongside functional requirements and performing risk analysis during the design phase of the SDLC.

Coding Practices

App4Legal follows development best practices in order to cater to the highest security standards. The below standards and procedures are followed in App4Legal SDLC:

  • OWASP Top 10 best practices for web applications
  • Data & Input Validation
  • Data & Input Sanitization
  • Peer-To-Peer Code Review

Vulnerability Assessment

App4Legal undergoes an application vulnerability assessment test on an annual basis by an external cyber security firm.

Security Training and Awareness

App4Legal  provides security training sessions for developers, architects, and QA. The focus is on secure design principles, security issues, web security, and encryption. 

Maintenance & Vulnerability Patching

Please refer to Lexzur Security Bugfix Policy




  • No labels