CSSLP: Secure Software Testing


Overview/Description
Target Audience
Prerequisites
Expected Duration
Lesson Objectives
Course Number
Expertise Level


Overview/Description
It's not enough to integrate secure coding into your software designs; it's equally important to test that your controls function properly. In this course, you'll learn best practices for testing for security and quality insurance, including artifact testing, functional and nonfunctional testing, and bug tracking. This course also covers some of the essential testing types such as penetration testing, scanning, simulation testing, failure testing, and cryptographic validation. Finally, you'll explore options for dealing with test results, such as the importance of impact assessments and corrective actions you can take with less than perfect results. This course is one of a series in the Skillsoft learning path that covers the objectives for the Certified Secure Software Lifecycle Professional or CSSLP exam.

Target Audience
Individuals interested in secure software lifecycle design concepts and methodologies; candidates for the CSSLP exam

Prerequisites
None

Expected Duration (hours)
1.5

Lesson Objectives

CSSLP: Secure Software Testing

  • start the course
  • recognize characteristics of testing artifacts
  • identify characteristics of functional testing
  • distinguish between nonfunctional testing methods
  • distinguish between white-, grey-, and black-box testing
  • identify environment best practices for ensuring secure software testing
  • distinguish between bug tracking states
  • recognize characteristics of attack surface validation for software testing
  • distinguish between testing standards for software quality assurance
  • identify the four steps in the penetration process
  • recognize characteristics of the fuzzing method
  • recognize characteristics of scanning
  • recognize characteristics of simulation testing
  • recognize characteristics of testing for failure
  • recognize characteristics of cryptographic validation
  • recognize characteristics of regression testing
  • recognize characteristics of continuous testing
  • recognize characteristics of impact assessment
  • recognize options for addressing bugs
  • identify best practices in test data lifecycle management
  • identify best practices for securely testing software

    • Course Number:
    sp_slcp_a05_it_enus

    Expertise Level
    Intermediate