{"title":"安全性测试","authors":"J. Steven, Michael Cohen","doi":"10.1081/E-ESE-120044192","DOIUrl":null,"url":null,"abstract":"What is Security Testing? Security testing is a testing technique to determine if an information system protects data and maintains functionality as intended. It also aims at verifying 6 basic principles as listed below: Confidentiality Integrity Authentication Authorization Availability Non-repudiation Security Testing Techniques: Injection Broken Authentication and Session Management Cross-Site Scripting XSS Insecure Direct Object References Security Misconfiguration Sensitive Data Exposure Missing Function Level Access Control Cross-Site Request Forgery CSRF Using Components with Known Vulnerabilities Unvalidated Redirects and Forwards Open Source/Free Security Testing Tools:","PeriodicalId":386020,"journal":{"name":"Encyclopedia of Software Engineering","volume":"97 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"15","resultStr":"{\"title\":\"Security Testing\",\"authors\":\"J. Steven, Michael Cohen\",\"doi\":\"10.1081/E-ESE-120044192\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"What is Security Testing? Security testing is a testing technique to determine if an information system protects data and maintains functionality as intended. It also aims at verifying 6 basic principles as listed below: Confidentiality Integrity Authentication Authorization Availability Non-repudiation Security Testing Techniques: Injection Broken Authentication and Session Management Cross-Site Scripting XSS Insecure Direct Object References Security Misconfiguration Sensitive Data Exposure Missing Function Level Access Control Cross-Site Request Forgery CSRF Using Components with Known Vulnerabilities Unvalidated Redirects and Forwards Open Source/Free Security Testing Tools:\",\"PeriodicalId\":386020,\"journal\":{\"name\":\"Encyclopedia of Software Engineering\",\"volume\":\"97 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1900-01-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"15\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Encyclopedia of Software Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1081/E-ESE-120044192\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Encyclopedia of Software Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1081/E-ESE-120044192","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
What is Security Testing? Security testing is a testing technique to determine if an information system protects data and maintains functionality as intended. It also aims at verifying 6 basic principles as listed below: Confidentiality Integrity Authentication Authorization Availability Non-repudiation Security Testing Techniques: Injection Broken Authentication and Session Management Cross-Site Scripting XSS Insecure Direct Object References Security Misconfiguration Sensitive Data Exposure Missing Function Level Access Control Cross-Site Request Forgery CSRF Using Components with Known Vulnerabilities Unvalidated Redirects and Forwards Open Source/Free Security Testing Tools:
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
