We are committed to the success of our client applications and take care that all
testing processes are performed to the highest standards. Our engagement model incorporates
the best industry practices and ensures a high degree of confidence that your applications
and systems meet the most stringent requirements.
We are committed to the success of our client applications and take care that all
testing processes are performed to the highest standards. Our engagement model
incorporates the best industry practices and ensures a high degree of confidence
that your applications and systems meet the most stringent requirements. We can optimize
this process and assure our clients that their systems are as watertight as possible.
Our goal is to make sure your applications meet the functional, integrated and systems
test criteria for security. We can verify that changes, enhancements or performance
tuning changes have not adversely affected the key security safeguards. Are you confident
that security was strong enough in the specifications? We can help.
Security Testing - Areas of Focus
Authentication, Authorization, and Security: We will analyze,
plan and execute testing designed to ensure that your system's users are authenticated
and authorized with the requirements of the system design. In addition, we can analyze
and test your system vulnerability to unauthorized access.
Security Test Plans: We will analyze your
specific needs and either create or assist in creating a
comprehensive security-driven test plan and strategy.
Confidentiality Testing: Testing to ensure that your application
uses Personably Identifiable Information (PII) appropriately and according to the
system's specifications and design documentation.
Network Security Testing: We confirm that your
system is immune to outside network penetration attacks, and make
sure that it works seamlessly with your other security strategies
(firewalls, router-based security, DMZs, etc.).
Denial of Service: This type of testing (sometimes conducted as
a part of the Performance or Throughput Testing) seeks to determine the limits of
throughput that the system can tolerate before service is effectively blocked.
Transaction Deniability Testing: Does your system have transaction
audit trails or transaction tracking by authorizer or user functionality? Establish
and certify that your system meets the specifications for both.
Security Testing Services
Services
Description
Support Levels
Security Testing
Security testing of applications as part of specification compliance measurements.
Level 1 – Executing test scripts supplied by client and report
test results.
Level 2 – Business analysis to identify test scenarios, preparation
of test cases and scripts, develop test data, and report test result.
Level 3 – Full ownership of QA processes as an outsource engagement.
Full responsibility for all deliverables, timelines, testing and project success.
Regression Testing
Execute tests and analyze results to ensure that the application functionality is
not affected by any changes made to the system.
Level 1 – Execute existing regression test scripts.
Level 2 – Design and prepare test scripts, prepare test data, and
execute scripts.
Level 3 – Full ownership of QA processes as an outsource engagement.
Full responsibility for all deliverables, timelines, testing, and project success.
Client Intimacy
Model
