the impact of application security on testing
TRANSCRIPT
![Page 1: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/1.jpg)
1
![Page 2: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/2.jpg)
2
The impact of application security on testing in the new world
Andréas Prins 10-09-2009
![Page 3: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/3.jpg)
3
Program
The impact:
..of a lack of security
..by law
..for the testing process
..during implementation
![Page 4: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/4.jpg)
4
Impact on applications without security
![Page 5: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/5.jpg)
5
Application security and legislation
• Needed from the legislation perspective– Wet bescherming persoonsgegevens
– PCI-DSS (Payment Card Industry Data Security Standard)
– SAS70
• Clients trust you and your application
![Page 6: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/6.jpg)
6
Application security is an extra dimension
Explore new features in the application
Quality attributes as described ISO9126
Extra code that isn`t needed
![Page 7: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/7.jpg)
7
Testing has different faces and facets
Secure implementation
compliancy, control, make the right choices
awareness and expert training
Security assessments
Code reviewRisk analysis / threat modeling
Security Requirements
external review, knowledge, responsibilities
![Page 8: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/8.jpg)
8
The ease of security testing
demo
![Page 9: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/9.jpg)
9
The implementation into your proces
• Choose for secure application development
• Create awareness in the (IT) organization
• Educate people in the different proffesionalisms
• Implement the different activities step by step, project after project
![Page 10: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/10.jpg)
10
Security testing in the new world
• New technologies create new markets with other risks
• Security testing in the crowd– Use the crowd
– Use the knowledge
![Page 11: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/11.jpg)
11
The impact on testing
• Application security is an enrichment for your application
• Security testing in each phase of the process gives control and reliability
• Security testing is not only needed it`s a fun exploration
![Page 12: The Impact of application security on testing](https://reader034.vdocument.in/reader034/viewer/2022052509/55a20c6d1a28abdf4e8b46f1/html5/thumbnails/12.jpg)
12
Contact information
http://twitter.com/andreasprins
http://testingthefuture.net