|Overview: Information Security Testing
Testing for vulnerabilities in software and hardware using known vulnerability and threat patterns.
What is Information Security Testing?
John Spacey, updated on July 08, 2023
Information security testing is the practice of testing platforms, services, systems, applications, devices and processes for information security vulnerabilities. This is typically highly automated with tools that scan for known vulnerabilities and simulate attacks using known threat patterns. Information security testing may also include a series of manual attacks by skilled information security specialists.Testing is one part of a secure development process that begins with a secure architecture, design and coding practices. It is common to hold architecture and code reviews to confirm that designs and code are secure. This typically focuses on areas such as authorization, authentication, APIs, integration, session management, user input validation and other areas that are particularly vulnerable to security threats.
TestingThis is the complete list of articles we have written about testing.
If you enjoyed this page, please consider bookmarking Simplicable.
The types of testing that are used to validate that a product, service, process or system meets requirements.
An overview of non-function testing.An overview of low quality with examples.
The difference between a bug and a defect.An overview of build quality with examples. A reasonably comprehensive list of information technologies.
A list of gamification techniques. A list of common IT problems.
The basic types of cloud computing.
The common types of machine data.The common types of software.
A definition of proprietary technology with examples.
The common elements of a systems design.
The difference between systems and applications explained.
TrendingThe most popular articles on Simplicable in the past day. Recent posts or updates on Simplicable. Site Map