PCI SSF is more than a SDL

According to the PCI blog, ''Key security principles addressed in the Secure Software Standard include critical asset identification, secure default configuration, sensitive data protection, authentication and access control, attack detection, and vendor security guidance.'' That is, the SSF is more than the so-called Security Development Lifecycle (SDL). It includes all the standards and aspects that should be considered in a payment application regarding payment data security as well as how to validate and maintain the software.