In this series of Dev Sec Tips I would go through my notes on basic security design principles which can be considered by Dev before designing and coding their features in the app , you may have read it elsewhere as a security professional thought of documenting over here for easy reference if you are an security advocate for the app you build.
Subject referred over here is User of an Application or Feature
Trust Subject but Verify :
If a subject is system trying to connect to another system verify the connection by a method of mutual authentication
If a subject is a User trying to access a feature in application verify…