From the course: CSSLP Cert Prep: 5 Secure Software Testing
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Grouping your tests
From the course: CSSLP Cert Prep: 5 Secure Software Testing
Grouping your tests
- [Instructor] As you plan to execute your security test, you could take advantage of efficiencies if you divide those tests into logical groups. You should consider grouping your tests into two main groups, functional and nonfunctional. As a quick reminder, functional tests focus on the user experience. They validate that the app does what the user expects it to do. Nonfunctional tests were designed with the attack in mind. They focus on what the app wasn't designed to do. When we first discussed functional tests, I emphasized security tests don't often fall into this category. That said, functional tests that focus on business logic are the exception to that rule. Business logic and user experience go hand-in-hand and an app that fails business logic tests would not only make for a bad user experience but it would also likely contain weaknesses that an attacker might be able to exploit. When we discussed ensuring a…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.