From the course: CISSP Cert Prep (2021): 8 Software Development Security
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Code security tests
From the course: CISSP Cert Prep (2021): 8 Software Development Security
Code security tests
- [Instructor] Code security tests move beyond testing functional requirements and check code for security flaws. While code reviews play an important role in software security, they involve developers examining code and inspecting it for defects. Code tests go beyond code reviews and they use technology to assist in the code inspection process. It's common for organizations to use both code security testing and code reviews on the same software to gain different perspectives on software quality. There are two main types of code testing, static tests and dynamic tests. In a static code test, developers use specialized testing software to examine the code for common defects. The code doesn't actually get executed but it's examined for common errors and those errors are reported as defects that require correction. You can think of static code testing as the automated equivalent of a code review. In a dynamic test, the testing…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.