Evidence for SSDLC

dev_comtec · April 26, 2023, 5:40am

Hi team,

We are progressing with the input for Technical Design, and we have a question regarding the evidence required for SSDLC.
Are ISO 9001 and ISO 27001 certificates sufficient as evidence to submit documents for SSDLC?
Or is there a formal format for documents to be submitted as evidence for SSDLC?

Regards, Developer

kwaku.nyante · April 27, 2023, 4:16pm

Hello @dev_comtec

ISO 9001 and ISO27001 certificates will be reviewed but are not considered an SSDLC. Please add these certificates under Additional Documents. The SSDLC should incorporate your entire development process from requirements to production, and there is no standard format we are looking for - both detailed charts and written documentation will suffice.

slamitt.rethink · March 19, 2024, 6:52am

Hey @kwaku.nyante
I am registering an application in zoom.During the registeration zoom required these points

Do you have a secure software development process (SSDLC)?
Does your application undergo SAST (Static Application Security Test) and/or DAST (Dynamic Application Security Test)?
Does the application periodically undergo 3rd Party Application penetration testing?
when i click yes then i ask me for evidence.
I want to know what we will give in evidence that our application that is accessible other users to use zoom in our project .Please help us to resolve this issue
Kindly.
What is this evidence and how we can get this?

Topic		Replies	Views
Evidence for ssdlc in Technical Design App Marketplace	2	349	April 8, 2023
About the sample and format of "SDLC process" App Marketplace dc , api	4	563	May 10, 2023
New app security questions App Submission securityreview	2	354	August 18, 2023
Evidence Guidelines for Your Marketplace App App Marketplace app-submission , securityreview , marketplacesecurity	1	364	September 11, 2023
Documents not required are requested in Functional Review App Marketplace	3	239	October 8, 2023

Evidence for SSDLC

Related Topics