Building secure and compliant web applications using low-code methodologies
1 Technology Commercialization and Entrepreneurship, North Carolina State University, USA.
2 Department of Industrial Engineering, Texas A&M university, Kingsville, USA.
Review Article
World Journal of Advanced Research and Reviews, 2023, 20(03), 2266-2276
Article DOI: 10.30574/wjarr.2023.20.3.2572
Publication history:
Received on 05 November 2023; revised on 16 December 2023; accepted on 18 December 2023
Abstract:
Building secure and compliant web applications is a critical challenge in today’s digital landscape, particularly when leveraging low-code platforms. This article explores how low-code tools can be effectively utilized to develop applications that meet stringent regulatory standards such as HIPAA, GDPR, and PCI DSS while addressing potential security vulnerabilities. By integrating shift-left security practices, organizations can detect and remediate vulnerabilities early in the development process, significantly reducing post-deployment risks and costs. The article highlights strategies such as adopting platform-native security defaults, formalizing governance policies for citizen developers, and implementing phased security maturity models to ensure robust protection of sensitive data. Real-world examples demonstrate how proactive measures, including automated testing tools and role-based access controls (RBAC), enhance application security without compromising speed or scalability. Despite challenges like shadow IT and configuration gaps, strategic adoption of low-code platforms enables organizations to achieve compliance, maintain governance, and deliver secure solutions efficiently.
Keywords:
Low-Code Development; Application Security; Compliance; Shift-Left Security; HIPAA; Governance Policies
Full text article in PDF:
Copyright information:
Copyright © 2023 Author(s) retain the copyright of this article. This article is published under the terms of the Creative Commons Attribution Liscense 4.0