Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

One of the primary techniques for testing the security of software is to use man

ID: 3885289 • Letter: O

Question

One of the primary techniques for testing the security of software is to use manual penetration testing. Who should be responsible for performing this testing in an organization? Why would that person be the best fit? Is it better to use internal or external penetration testers? Justify your answers.

Use cases often focus on the correct pathway through software. Misuse cases, however, focus on malicious user behavior and how the software will respond. Give an example of a misuse case for an application and defend whether incorporating this misuse case in the software design would change the end software's behavior.

Give two difficulties of using automated source code scanning for testing an application. Why is this method of testing important?

Describe the importance of a final security review before releasing software to production. What are two issues that could cause a software program to fail the final security review? What should be done in each case if the issue is detected?

Explanation / Answer

One of the prime techniques of testing a software  is to use manual penetration testing.

In IT industry ,they have a team who look after the testing phase .These people have given the responsibility to evaluate the developed software in the requiredment that are summed up. That person is best fit for this job because he has the knowledge and experience to tackle any hurdle while testing.

I think it is better to use internal team for penetration tester and it should be performed more often because it is highly specialised specific validation regarding security took place ,the testing should done for each iteration to catch bug.

Sometimes it is also good to have external tester because manytime it performs some tests that required sme skills and knowledge that our team don't have but it create negative impact that when they become too comfortable with environment result in missing vulnerabilities.

Automation testing is used to re- run the scenerios ,it improve accuracy and saves time .The importance of a final security review before releasing software to productionis that at the time of launch no fault arise or any server crash should not take place thats why tetsing took place at each module and at last full tetsing should be done to find out bug before release. A drill or mock has to be i  done in each case if the issue is detected before the final release so that all validation or security related bug are sorted out.

kindly Rate my answer. ThankYou!!

Related Questions

One of the most worrisome waste products of a nuclear reactor is plutonium 239 (
Question #1395168
One of the most worrisome waste products of a nuclear reactor is plutonium 239 (
Question #2141048
One of the most-often sold items at a grocery store is sugar. The weekly demand
Question #468247
One of the moving parts of an engine contains 1.60 kg of aluminum and 0.300 kg o
Question #1333072
One of the moving parts of an engine contains 1.61 k g of aluminum and 0.315 k g
Question #1387066
One of the music industry\'s most pressing questions is: Can paid download store
Question #3221562
One of the music industry\'s most pressing questions is: Can paid download store
Question #3319992
One of the negatie effects of obesity is its impact on blood pressue. A research
Question #3181906

Navigate

Previous
One of the primary purposes of the EU was: to establish a common financial denom
Next
One of the problems I have with null references is that they may not be exceptio

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.