In the recent days I have been trying to explore a lot to understand the various aspects that need to be taken care of while performing security testing for software.
When asked what security testing is, a few naïve testers replied that Security testing is ensuring:
- That the password is encrypted in database and any flat files.
- That only the authorized user has access to the various modules and data in the software
Sure, Security testing is taking care of the above but there is much more to it that needs to be verified to ensure that the application is secure from the malicious attackers. Continue reading