Why is security such a challenging topics for so many developers?
Raja Gupta
Helping People Learn AI & SAP ◆ Solution Architect at SAP ◆ Author ◆ Blogger ◆ Tech Speaker
When it comes to security in software development, many developers think it like a haunted house which nobody wants to enter. To be frank, in my early days as developers, I also used to think that security is the most challenging topic in application development.
In reality, security is one of the most interesting topic and if you follow a right path, it's not so complicated at all.
If you have watched the movie "Batman Begins", you may recognize this image.
The scene when Don Carmine Falcone was telling Bruce Wayne that "This is a world you’ll never understand. And you always fear what you don’t understand."
It's similar situation in security implementation for many developers. In most organizations, developers, especially during their initial days, are too focused on implementing product features and fixing bugs. Specially in cloud culture, they are always in hurry to push a new feature to production.
And in that rush, they don't get time (or don't feel need) to understand the basic concepts related to security.?
??
If a security expert tells a developer, “Make sure you Stop SQL injections!”. And the first thought somes to developer's mind is “What the hell is SQL injection?”.
?Or if they think "I don’t know OAuth but I will follow the step-by-step guide to implement it."
?Then be absolutely sure that your application will not be secure. And as a developer you can only try to dodge the bullet as Neo did when was unaware of his power.
In reality, anyone can become expert in security and reach a stage where you don't need to dodge the bullet but stops all security attacks like "The One"
领英推荐
?
Just follow these 2 steps.
?
Step 1
Understand the important of security. Even if you build world's best solution - If its not secure, it's useless. Convince yourself that you MUST learn security.
?
Step 2
If you set out on the right path, and get your basics right, you will feel that - There is no other topic as interesting as security.?
If you are working on SAP BTP, below blogs might help you for step 2.