Security Testing Test Cases, Test Case
for Security Testing, Security Testing Scenario
- Directly input the url or try to access the bookmark web page directly without system login.
- Confirm that system need to restrict us to download the file without sign in on the available
Security Testing - Also make sure once log out then from Back button of browser or with the help of accessed url Page should not be accessible.
- Verify that valid and the invalid password rules fire the validation for character limit and and user id, password can't be same.
- Confirm that urgent sensitive information like password, Id number, credit card number etc should not get the shown in the input box while typing. All these should be in the asterisk and encrypted format.
- Test and confirm that bookmarking should be deactivate on the secure pages.
- Test is Right Click, Source disable. Mean source code should not visible to user.
- If any alternative is available to access the secure page for the browser under the versions 3.0, since SSL is not compatible with such browser
- Test that our server lock out an individual who have tried to access our website several times with invalid login or password information.
- Time out condition need to verified. After time out user should not be able to access or navigate the website after login pages.
- Confirm about prevented from doing directly search by updating the content in any url.
- Test that relevant information should be writer to the log files ans that information should be traceable frequently.
- Under the SSL Test that the encryption have been done appropriately and confirm the integrity of information.
- Confirm for restrict pages, These should not be accessible by any type of user after timeout the session.
- Authentication of ID or Password, The same account on the deffer machine can not log in at the same time period. So at a correct time only one user can login the system with a user id.
- Authentication of ID or Password styles input the wrong pass word several times and verify if the account get lock.
- Add or edit the urgent information like (ID number, password, credit card number etc.) Test if it get reflect the immediately or caching the old previous value.
- Check that Error message does not contain the malicious info so that hacker could not use such information to hack the website login details etc.
Really this is very helpful...Kindly send me some test scenarios for load,stress & performance testing related to Mobile application..
ReplyDeleteThanks in adnavnce