8-59.3 Application Security Testing Flashcards
Testing that can take place very early in the software development lifecycle as it does not require a working application
SAST - Static Application Security Testing
Testing that addresses platform (Apple, Android) and device-specific security settings
MAST - Mobile Application Security Testing
Methodology that used predefined security policies to detect and prevent attacks, such as SQL injection and cross-site scripting
RASP - Runtime Application Self-Protection
Hybrid Testing that incorporates SAST and DAST techniques
IAST - Interactive Application Security Testing
Testing that verifies a code change or update doesn’t introduce a fault, affect existing functionality, or impact interoperability
Regression Testing