DVA-C02 - Security - Section 2.8
Handle sensitive data in application code through data classification, sanitisation and secure credential handling to protect PII and PHI.
Classify data by sensitivity level - distinguishing personally identifiable information and protected health information from general application data - and apply sanitisation before storing or logging it. Handle credentials in application code by reading them from secure stores at runtime rather than embedding them in source or config files.
Data classificationPersonally identifiable informationCredential handlingData sanitisation
More in this domain
Back to all Security objectives, or the DVA-C02 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.