From the course: Developing Secure Software (2015)
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Testing for security
- Testing for security is essential to ensure software security. There are essentially three different types of general testing techniques, which can still be used for testing software security. Black-box testing is one of them and its name implies that the testers don't have access to the source code. White-box testing is the opposite of black-box testing. It does have full access to the source code and designs its tests based on the knowledge of the source code. Gray-box testing is the hybrid of the black-box and white-box testing. There is also more security-specific way of categorizing software testing. These testing techniques are static analysis, dynamic analysis, and penetration testing. Software security has traditionally focused on testing a lot, which is why security testing is a field that is very mature and offers very good tool support.
Contents
-
-
-
-
-
-
-
(Locked)
Testing for security1m 4s
-
(Locked)
Static analysis1m 41s
-
(Locked)
Exploring tools for static analysis1m 42s
-
(Locked)
Dynamic analysis1m 37s
-
(Locked)
Dynamic analysis tools59s
-
(Locked)
Penetration testing1m 33s
-
(Locked)
Penetration testing tools2m 18s
-
(Locked)
Vulnerability management1m 42s
-
(Locked)
Vulnerability management tools1m 57s
-
(Locked)
-
-