From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Unlock the full course today

Join today to access over 24,600 courses taught by industry experts.

Secure software testing

Secure software testing

From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Start my 1-month free trial Buy for my team

Secure software testing

- [Instructor] The sixth domain of the CSSLP is Secure Software Testing. This domain focuses on building and executing the tests that will help you confirm the effectiveness of your security controls, as well as protecting any data that you generate for those tests. Secure software testing accounts for 14% of the CSSLP exam. You'll learn about developing security test cases. The security test you'd like to perform will determine which tools and techniques you should use. That's why this domain explores the difference between regression test and integration test and why it covers techniques like fuzzing, scanning, and penetration testing. But security tests should not be run ad hoc. You should develop a security testing strategy and plan before running your first test. You'll revisit functional and non-functional security testing, while using techniques like white box and black box testing. You'll also learn about building your test environment and utilizing standards to help you…

Contents