Explain about Security Testing in webbased application?

Answers were Sorted based on User's Feedback



Explain about Security Testing in webbased application?..

Answer / ramyab.mca@gmail.com

Hai...

Security Testing:

Following are some test cases for web security testing:

Test by pasting internal url directly into browser address
bar without login. Internal pages should not open.
If you are logged in using username and password and
browsing internal pages then try changing url options
directly. I.e. If you are checking some publisher site
statistics with publisher site ID= 123. Try directly
changing the url site ID parameter to different site ID
which is not related to logged in user. Access should
denied for this user to view others stats.
Try some invalid inputs in input fields like login
username, password, input text boxes. Check the system
reaction on all invalid inputs.
Web directories or files should not be accessible directly
unless given download option.
Test the CAPTCHA for automates scripts logins.
Test if SSL is used for security measures. If used proper
message should get displayed when user switch from non-
secure http:// pages to secure https:// pages and vice
versa.
All transactions, error messages, security breach attempts
should get logged in log files somewhere on web server.

K,Byeee...
Thanks & Regards
B.Ramyasri

Is This Answer Correct ?    8 Yes 2 No

Explain about Security Testing in webbased application?..

Answer / jyoti

Security Testing involves below points
1) Authorization Testing : Testing of different users
authority to view specific information.
i.e. Specific authority to enter in administration area

2) Access control testing : Access allocation to users
i.e. team members cannot access TL or PM data
PM can access TL's data.

Is This Answer Correct ?    6 Yes 0 No

Post New Answer

More Manual Testing Interview Questions

Waht is the diffrence between static testing and dynamic testing,what u do instatic testing as a black box test engineer

8 Answers   SunGard,


when you open a stand alone application then the application is displayed on the screen.what type of testing is this?

1 Answers  


At what stage of the life cycle does testing begin?

2 Answers  


What is the test scenario? What is the difference between test strategy and test scenario.?

8 Answers   poonam industries,


Im a 2005 graduate i did testing course from a reputeted institute but was nt able to get a job as a fresher so i got an fack certificate in tat i included 2 prjs based on web site testin cud ne one tell me wat will be questions cud be fired for me as a 2yrs exp in manual testing .. ill be great full of all urs

6 Answers  






Hi guys,I have 3+ years of exp in manual testing in a bangalore based MNC company.I Like to jump in chennai.So please if u know any jobs in chennai firms please let me know in my email-id. anbarasu2k@rediffmail.com. cheers, anbarasu.

0 Answers  


types of reviews

9 Answers   AZTEC,


What is Dialog Application? Tell me in details about it? Thankd in Advance

0 Answers  


How to check security of any browsers???

1 Answers   IBM,


what is endurance testing?give one example

4 Answers   Wipro,


you found a bug and send it to the developer for rectification but the developer not accepting that bug at that time what will u do?(plz its very urgent give me the best answer plz)

12 Answers   Encora,


Which type of testing combines two modules?

6 Answers   ABC, Business One,


Categories