Answer / balu

using three methods the sequerity is provided

1) Authorazation/Authentication
Allowing valid user and preventing invalid users.....

2) Access Control
Permission to valid user to access user
fctionalitites in software build.

3) Encryption/Dis\cryption
Data conversions in b/n client process and server
provcess to prevent third party avccessing

Answer / anjani dubey

There is different type of methods are using for security
testing
1)Authorization and Authentication:For checking the valid
and invalid user.
2)Access Control:access permission to valid user to access
user functionalities in application.
3)Encryption and Decryption: Data conversions in between
client process and server process to prevent third party
accessing

The above techniques using for security testing for web
application.

Answer / chandu

to provide the security to webapplictions by giving some
algorithms and security certificates, i can give one example.

suppose dotnet application provides itself security to its
applications, like sha algorithm,or we can purchase security
certificates,
testing point of view we can check weather the data is
encrypting or not and one more we should check the URL paths
whether the url is showing our usernames and passwords

thanks
chandu

Answer / gowrisankar.m

Security Testing means, One will perform Testing on the
Security Issues of that Application. i.e checking whether it
is properly secured or not. This can be done in 3 ways.

1) Authorization Testing:
---------------------------
It means testing the application by entering different User
Names and Passwords. The application should work only
Authorized persons only.

2)Direct URl Testing:
----------------------
It means by performing Testing on application by copying
the URL's of some secured pages and past it in the Browser,
then it should not work.

3)Firewall Leakage Testing :
-----------------------------
This testing involves that the User Enters in to the
Application as one level of user and try to Access the
application as another Level of User, then the application
should not work for this actions.

Answer / naren

Security testing means whether our web application is
vulnerable for hackers.
1.X-SS Cross Site Scripting
2.URL Injection

Can any one please refer me the good book to study more abt testing manual as well as abt automated,in which i cld learn more abt to prepare test cases and more abt testing.If possible plz mail me the name of the book at : nitin9360@gmail.com regards Nitin

2 Answers  

can any one please tell me about CURD testing. Did the curd testing and sanity testing both are same?

2 Answers  

What is the role of software tester in process of verification? Explain.

1 Answers   IBM,

How we test an ERP products? and wat approach we will fallows and wat r the tools avaliable for ERP testing?

2 Answers   Midas Technologies,

Why do we need different environments and different data? What is the other name for environment? Justify your explanation ?

0 Answers  

what are the different types of SDLC?

37 Answers   CybAge, i-Link, IBM, Intel, Middle East Bank, Satyam, TCS, Value Labs, Wipro,

wht is bug, deffect,issue,error

5 Answers  

I have 2 questions: 1) What are Technical test cases 2) What are Business test case (Or Business driven test cases)

1 Answers   SJ Innovative,

Test Manager's role in preparing proposals?

1 Answers  

how we will decide test effectiveness and test efficiency?

1 Answers   Wipro,

1.when do we start testing and explain briefly please assp 2.when will we stop testing friends tell me immediatly

2 Answers  

. Is any graph is used for code coverage analysis?

0 Answers   3i Infotech,