Application Security Testing - A New Approach
My fourth and most significant e-Book has been published by EuroSTAR Testing Conferences. If you have any interest in security or DevOps I urge you to read this: EuroSTAR e-Book on a new approach to Application Security
Application Security is a broad and deep topic that few Testers or Developers ever master. Static and dynamic analysis vulnerability detection tools are proven to be appallingly inaccurate. Specialised hands-on security testing tools require intensive effort by skilled experts who remain in short supply.
Thoroughly security testing a web application presents extreme challenges to the delivery date and to the scope of test coverage. The shift to Agile and DevOps can exacerbate the conflict between security and timely delivery if conventional tools and techniques are retained from sequential project development methodologies.
A new approach to Application Security has arrived that turns our traditional testing model inside-out. Now we can integrate security tools with the code and components inside applications. Instead of scanning and probing an application from the outside, we can make security attributes report out to us from inside the application itself. Security becomes part of the code and operates in continuous real-time.
The results in terms of speed and accuracy astonished my team and I in 2016 when we implemented the first UK real-time security instrumentation. Read the free EuroSTAR e-Book here.
Senior Engineer, Product Marketing
8 年You can read about Declan's new approach to Application Security Testing Here - https://huddle.eurostarsoftwaretesting.com/download-application-security-testing-new-approach/