This chapter considers the approach taken to planning and designing security tests. The principal security vulnerabilities that may affect a system are discussed, and approaches to exploiting those vulnerabilities using tests are explained.
The subject of security testing is extensive and may require considerable technical expertise. The ISTQB Expert Level Security Testing syllabus is under development at the time we are writing this book.
Terms used in this chapter
Security testing requires knowledge and creativity.
In common with the testing of other quality attributes, the basic steps in the fundamental test process can also be applied to security testing. Within this framework, ...