The Force.com platform and Salesforce CRM suite of applications include a wide variety of security features and configuration settings. This page introduces Force.com Secure Cloud Development, a new suite of tools, training and processes to help all developers get started building trusted applications. Get started below by reviewing the Secure Development Guide or by starting a class in Trust Academy or Trailhead!
We recommend that you start with the following resources, and then reference the official Salesforce documentation.
As you develop on the Salesforce platform it is important to consider security at every step of the process; only thinking about Security at the end of development will lead to wasted time and effort as well as security flaws. Ensure that you are considering security as you design and develop the application, as part of your testing and QA process, and as an integral part of your release and update plan. To help you along the way, Salesforce Security is constantly developing and updating tools and resources for you to use.
Catching security flaws at this stage will save your company serious time and effort in the future.
Setting strong requirements or guidelines at this stage will help to ensure that your development team has written code with security in mind.
Focus your efforts on ensuring that the requirements have been followed and nothing slipped through the cracks.
Now that you’re ready to release, you’ll need a plan to address any security flaws found internally and externally.
These tools are developed and maintained by the Salesforce Product Security team to help you - our partners and platform developers - build secure apps on the Salesforce platform.
The following resources are written and maintained by Salesforce's award-winning documentation team.
The following resources contain valuable content written by Salesforce and our community. Note that the content may not be regularly maintained.
Articles and Whitepapers
Blogs and Community