Hosting Provided By

Re: Security Testing

From: planz <planz235(at)hotmail.com>
Date: Tue Mar 04 2003 - 03:28:07 EST

It depends. Normally this kind of checking is given to a separate team to verify. In our organization, our developers normally write the programs, and a separate web application security team verifies the security of the application with pre-defined security requirements. Developer doing a security testing may not yield actual test results.

Original Message ----- From: "Ramirez, Manuel N (CORP, DDEMESIS)" <Manuel.Ramirez@ddemesis.ge.com> To: <webappsec@securityfocus.com> Sent: Tuesday, March 04, 2003 2:09 AM Subject: Security Testing

Hi everybody,
I was wondering if some of you have some papers regarding web applications security testing. I'm working on a CMM iniciative and we are planning to include a security testing phase so every new developed application is security-error free.

Would you recommend every development team to perform security testing or it's better to have a group of experienced people doing these activities for all of the developed applications?

Best regards,
Manuel Received on Tue Mar 4 03:36:48 2003

This message: [ Message body ]
Next message: Ory Segal: "RE: Web Application Source Vulnerability Scanners"
Previous message: scott wood: "RE: Security Testing"
In reply to: Ramirez, Manuel N (CORP, DDEMESIS): "Security Testing"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:49 EDT