International Business Machines Corporation
Security handling during application code branching

Abstract:

Aspects of the present invention provide an approach for security handling of application code branching from requirements elicitation through the software development lifecycle (SDLC) to deployment and operation. In an embodiment, a set of security rules is collected related to a defined security policy (e.g., of an organization). During a requirements elicitation phase, any code branches which go outside of its current execution space are dynamically identified using natural language techniques. A potential gap is reported in a generated gap document when an identified code branch is not consistent with the set of security rules.