Security Testing

There are six basic security concepts that need to be covered by security testing:

  1. Confidentiality
  2. Integrity
  3. Authentication
  4. Authorization
  5. Availability
  6. Non-repudiation

Utilizing the expertise of our testers, our Security Testing team provides the following coverage points:

  • OWASP Top 10 Coverage: Flaws related to Authentication, Authorization, Session Management, SQL Injection, Cross-Site Scripting (XSS), Cross Site Request Forgery (CSRF), Redirection Flaws, Security mis-configurations
  • Secure Design
  • Tool-assisted Exploratory testing
  • Threat Modeling based on the attack model used by Microsoft/OWASP
  • Logic Flaws resulting in Vulnerabilities
  • Vulnerability Analysis