Skip to main content

SECURITY TESTING.....how to make your website more secure!!

By
SECURITY TESTING



Before discussing how to secure your website. Let us take a quick review on what is testing??? What is website??? And what a security testing is???

WEBSITE

 A website is a set of web pages or we can say that website is a collection of web pages. These web pages are continuously accessed on the internet.

WEBSITE TESTING

Website testing is a type of testing  where test cases or test plans are executed in order to check various web applications.

 In website development, security is the main concern that really need to be concentrated upon If your website is not really secured, any unauthorized person can easily hack private information or any confidential data of any user and can lead to a severe harm. Therefore, in web development security testing is most important.

SECURITY TESTING

 Security testing is a kind of testing in which various static and dynamic analysis are done,
 different test cases are planned and executed in order to find whether client’s website is fully secure or not.

VARIOUS THREATS TO A WEBSITE

There are a number of ways in which a person illegally harms a website, some of them are:
  • URL manipulation 
  • SQL injection
  • Cross-site scripting
  • Password manipulation

TIPS TO MAKE YOUR WEBSITE MORE SECURE

  • For, Http Protocol really matter, I mean security tester definitely should be aware of Http Protocol. He/she should also aware of client-server communication. He must know SQL & XSS. All these things are really important for tester to efficiently plan and implement security testing

  • Sometimes by default username and password of many ID's gets saved into cookies without encryption*. And then obviously hacker can easily extract the login details from there I mean the password and username can enter into the private word of the poor victim.



  • Therefore, during security testing

    , the tester should design the website in such a manner that it should enforce the user to make a strong password by showing     him/her some points regarding how to create passwords (like your password should contain at least 1 numeral, 1 capital letter and alphabets from a..z, and, at least, one symbol)

*encryption - encryption is actually the conversion of readable data or information into unreadable codes.
  • Security tester should make sure that any HTML or SCRIPT should not be accepted by the application  otherwise it could prove more prone to the hacker’s attack

       During security testing of any website application, the tester should really need to take care of some important points. These are:
  1.  Configuration details of the application or server
  2.  All the services which are running on the server
  3. User or customer data currently hosted by the application
For more information regarding testing kindly visit:
http://www.precisetestingsolution.com/

Labels:

Comments

Post a Comment

Popular posts from this blog

Steps To Hunt the Bugs Successfully

By
The testers should catch the bugs in software that they’re testing. Testers should try to catch as several vital bugs as soon as possible. Catching the crucial bug earlier on Product-Life-Cycle can save the Projects from financial losses & mitigate the risks as compared for catching the same at a later stage in SDLC. Steps to hunt the bugs: Sometimes it’s useful to break the rules: The following test cases, which were predefined a tester can miss the bugs so it makes it impossible’s to provide the product i.e. 100 percent bug free. If you-follow pre-determined test cases you risks becoming blind to outside the bugs. A first secret is to check the functionality under the test. It’ll be an effective channel to discover the more bugs, because functionality is not generally covered by the test cases. Examine the patterns: You might have noticed that the bugs can be often met in the groups, one can call them-gregarious. The testing a new but the similar functionality...
Post a Comment
Read more

Cross browser testing Tools

By
Cross Browser testing It is a process to test the web apps across multiple browsers. It involves the checking compatibility of the app across multiple web browsers & ensures that your web app’s works correctly across different web browsers. Tools for Cross Browser Testing Browser shots: The browser shots might be most exhaustive cross browser-testing tool that exists. Browser Shots includes all of most popular-browsers, like Firefox, Chrome, & Safari, along with the tons of another browser’s that might sound unfamiliar, like Sea Monkey, Flock, & Iceape. You can adjust the resolution, color-settings, & even Flash and JavaScript settings. Cross Browser Testing: It allows users to test their websites with over the hundred resolution or browser and Operating System combinations. This also has support to mobile web-browsers, which is crucial because the web traffic is making shift from the primarily desktop computer users to primarily mobile ...
Post a Comment
Read more

Mobile Application Testing: Strategy for Development

By
There are a huge number of demands and lots of competitions in the mobile application industries. In that demands and competitions, the mobile application testing has become more important. The testing phase of the mobile application testing looks like evil between the creative process and excitement of new products in the market. According to the survey, “In US, on an average 2-3 hours per day people spends their time on smartphones and tablets. On that time, they spent 80% on mobile application and remaining 20% on web applications.” Few list of key factors for successful mobile application testing strategies are: Selection of Device for Testing : Before introducing the mobile application test activities, first select the devices for testing the application. Selection decision is very important because only devices can help to targets maximum numbers of the customers for accessing the application. There are two parts for device selection: §   Device Model ...
Post a Comment
Read more