Escolar Documentos
Profissional Documentos
Cultura Documentos
Security Scanning: It involves identifying network and system weaknesses, and later provides solutions for reducing these
risks. This scanning can be performed for both Manual and Automated scanning.
Penetration testing: This kind of testing simulates an attack from a malicious hacker. This testing involves analysis of a
particular system to check for potential vulnerabilities to an external hacking attempt.
Risk Assessment: This testing involves analysis of security risks observed in the organization. Risks are classified as Low,
Medium and High. This testing recommends controls and measures to reduce the risk.
Security Auditing: This is an internal inspection of Applications and Operating systems for security flaws. Audit can also be
done via line by line inspection of code
Ethical hacking: It's hacking an Organization Software systems. Unlike malicious hackers ,who steal for their own gains , the
intent is to expose security flaws in the system.
Posture Assessment: This combines Security scanning, Ethical Hacking and Risk Assessments to show an overall security
posture of an organization.
Security Tests
Security Tests
Security tests are designed to verify that the system meets the security requirements
Confidentiality
It is the requirement that data and the processes be protected from
unauthorized disclosure
Integrity
It is the requirement that data and process be protected from unauthorized
modification
Availability
It is the requirement that data and processes be protected form the denial of
service to authorized users
Security test scenarios should include negative scenarios such as misuse and abuse
of the software system
System Testing:
Performance Testing
Performance testing, a non-functional testing technique performed to determine the system
parameters in terms of responsiveness and stability under various workload. Performance testing
measures the quality attributes of the system, such as scalability, reliability and resource usage.
GUI testing is the process of testing the system's Graphical User Interface of the
Application Under Test. GUI testing involves checking the screens with the
controls like menus, buttons, icons, and all types of bars - toolbar, menu bar,
dialog boxes and windows, etc.
GUI Testing - Characteristics:
GUI is a hierarchical, graphical front end to the application, contains graphical
objects with a set of properties.
During execution, the values of the properties of each objects of a GUI define the
GUI state.
It has capabilities to exercise GUI events like key press/mouse click.
Able to provide inputs to the GUI Objects.
To check the GUI representations to see if they are consistent with the expected
ones.
It strongly depends on the used technology.
GUI Testing
GUI Testing - Approaches:
Manual Based - Based on the domain and application
knowledge of the tester.
Capture and Replay - Based on capture and replay of user
actions.
Model-based testing - Based on the execution of user sessions
based on a GUI model. Various GUI models are briefly discussed
below.
CLIENT / SERVER TESTING
CLIENT / SERVER TESTING
This type of testing usually done for 2 tier applications (usually developed for LAN)