Security by Design

Definition

Security by Design is a design principle where security is built into systems, software, and processes from the start — rather than added as an afterthought. The EU Cyber Resilience Act mandates this.

Security by Design includes: threat modeling in the design phase, secure coding practices, minimal attack surface, fail-secure defaults, defense in depth.

Related terms

CRA (Cyber Resilience Act) DevSecOps
← Back to glossary