Note: This question is mandatory for you to attempt. Which type of testing involves examining the structure and logic of an application's source code to identify vulnerabilities? Black Box Testing White Box Testing Grey Box Testing Red Team Testing Mark for Review & Next Clear Response 78° Marks for correct answer: 1 | Negar Version: 17.07.00 Search Previous
Added by Travis L.
Close
Step 1
Step 1: Read the question: it asks which testing type examines the structure and logic of an application's source code to identify vulnerabilities. Show more…
Show all steps
Your feedback will help us improve your experience
Manisha Sarker and 91 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
You are a cybersecurity specialist for a large oil and gas field services firm that frequently develops its own software. The company has over 150 locations globally and has outsourced a major portion of its IT and software development to India. All of these locations, including those in India, are on the same internal network for ease of access, even though many of them are contractors. You have been assigned the task of testing a new application to ensure that there are no security issues with it prior to go-live. Application details The purpose of the new application is to track the movement of all of the company’s trucks (semis) throughout the United States 24/7. Each truck will have a transponder that will report its location, speed, direction, and cargo (among other things). Users will be able to set a variety of filters based on what they’re looking for. The four main cargo types are all used in the hydraulic fracturing (aka “fracking”) process. They are wastewater, chemicals, explosives, and radioactive materials. The application will be hosted internally and will NOT be accessible via the Internet. However, any authenticated user on the internal network will be able to access it. A small number of employees will have admin privileges to it. Management is anxious to have this application go live so they can start saving money by making the routes more efficient. They see no issues with this application as it’s pretty simple in their eyes, so they are expecting you to provide the security approval fairly quickly. Here are the review tasks you must follow per company policy: 1. Create a test plan for testing this application a. Feel free to use the example included with this project as a template. 2. Create test cases 3. Create test cycles As you perform these tasks, be sure to include the following: ● Potential team members and what role they will play in the process. Don’t forget that some members may not be in IT. ● Accounts and access needed ● Specialized tools ● Documentation, and where it will reside ● Recording of results (how) ● Logging of bugs ● Justify why you chose a particular testing approach or methodology ● Identify risks associated with the design of the application, and recommend solutions. For example, if you believe that there is an access or authorization issue, then document the issue, the risk it poses, and recommendation(s) to fix it.
Akash M.
What is the Type of Testing That is Best Done During the Development Life Cycle Process of the In-House Software?
Haricharan G.
Suggest how you would go about validating a password protection system for an application that you have developed Explain the function of any tools that you think maybe useful?
Chandra J.
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD