System and Software Protection. a) All system and applications must utilize secure authentication and authorization mechanisms; b) All Supplier-developed applications must be designed and implemented using secure coding standards and design principles (e.g. OWASP); c) Operating systems should be hardened appropriately according to industry best practices (e.g. NIST 800 series, NSA guidelines, CIS benchmark, etc.).
Appears in 2 contracts
Sources: Security Terms, Security Terms