KEMBAR78
CNIT 125 7. Security Assessment and Testing | PDF
Sam Bowne, profile picture
Uploaded bySam Bowne
PDF, PPTX433 views

CNIT 125 7. Security Assessment and Testing

The document covers various concepts in information security, focusing on security assessments and testing methodologies, including penetration testing techniques, vulnerability scanning, and security audits. It details methods for software testing such as static and dynamic analysis, regression testing, and fuzzing, as well as the importance of compliance with standards like PCI-DSS. The emphasis is on ensuring data confidentiality and integrity while addressing potential security threats through structured testing and audits.

Download as PDF, PPTX
CNIT 125: Information Security Professional (CISSP Preparation) Ch 7. Security Assessment and Testing
Assessing Access Control
Penetration Testing • Authorized white hat hacker breaks into an organization
Social Engineering • Exploiting the human mind • Often tricks the user into clicking a link • Zero-knowledge (black box) test • No information provided to attacker • Full-knowledge test • Provides pen tester with network diagram, policies and procedures, and sometimes results from previous pen testers • Partial-knowledge test
Penetration Tester Tools and Methodology • Metasploit (open source) • Core Impact and Immunity Canvas (closed source) • Methodology
Assuring Confidentiality, Data Integrity, and System Integrity • Pen testers must ensure confidentiality of data they access • Report should be treated as confidential
Vulnerability Testing • Also called Vulnerability Scanning • Uses a tool like Nessus or OpenVAS • Finds vulnerabilities • Requires manual verification and assessment • Must be matched to real threats to find true risk
Security Audit • Tests against a public standard • Such as PCI-DSS (Payment Card Industry Data Security Standard)
Security Assessment • View many controls across multiple domains • Policies and procedures • Administrative controls • Change management • Other tests (pen tests, vuln assessments, security audits)
Internal and Third Party Audits • Internal audits • Assessing adherence to policy • External audits • Require security professionals to play a role • Response and remediation to audit findings • Demonstrating mitigations
Log Reviews • Easiest way to verify that access control mechanisms are working
Centralized Logging • A central repository allows for more scalable security monitoring and intrusion detection • Syslog transmits log data in plaintext over UDP port 514 • Log retention • May be relevant to legal or regulatory compliance
Software Testing Methods
Software Testing Methoda • Discovering programmer errors • Custom apps don't have a vendor providing security patches • Source code review helps • Two general approaches: • Static and dynamic analysis • Also manual code review • Pair programming is employed in agile programming shops
Static and Dynamic Testing • Static testing: the code is not running • Review source code for insecure practices, unsafe functions, etc. • Unix program lint • Compiler warnings • Dynamic testing: while code is executing • White box testing: tester has source code • Black box: tester has no internal details
Traceability Matrix • Maps customer requirements to software testing plan
Synthetic Transactions • Simulating business activities • Often used for Web apps
Software Testing Levels • Unit testing • Tests components like functions, procedures, or objects • Installation testing • Tests software as it is installed and first operated • Integration Testing • Testing multiple software components as they are combined into a working system
Software Testing Levels • Regression testing • Testing softare after updates, modification, or patches • Acceptance testing • Testing to ensure the software meets the customer's requirements • When done by customer, called User Acceptance Testing
Fuzzing • A type of black box testing • Sends random malformed data into software programs • To find crashes • A type of dynamic testing • Has found many flaws
Combinatorial Software Testing • Seeks to identify and test all unique combinations of software inputs • Pairwise testing (also called all pairs testing)
Misuse Case Testing • Formally model an adversary misusing the application • A more formal and commonly recognized way to consider negative security outcomes is threat modeling • Microsoft highlights it in their Security Development Lifecycle (SDL)
Test Coverage Analysis • Identifies the degree to which code testing applies to the entire application • To ensure that there are no significant gaps
Analyze and Report Test Outputs • Security test results are easy to produce • Actually improving security is much more difficult • Data must be analyzed to determine what action to take
CNIT 125 7. Security Assessment and Testing

More Related Content

PDF
7. Security Operations
bySam Bowne
 
PDF
CNIT 125: Ch 4. Security Engineering (Part 1)
bySam Bowne
 
PDF
6. Security Assessment and Testing
bySam Bowne
 
PDF
CNIT 125 Ch 3. Asset Security
bySam Bowne
 
PDF
CISSP Prep: Ch 7. Security Assessment and Testing
bySam Bowne
 
PDF
3. Security Engineering
bySam Bowne
 
PDF
CNIT 125 6. Identity and Access Management
bySam Bowne
 
PDF
1. Security and Risk Management
bySam Bowne
 
7. Security Operations
bySam Bowne
 
CNIT 125: Ch 4. Security Engineering (Part 1)
bySam Bowne
 
6. Security Assessment and Testing
bySam Bowne
 
CNIT 125 Ch 3. Asset Security
bySam Bowne
 
CISSP Prep: Ch 7. Security Assessment and Testing
bySam Bowne
 
3. Security Engineering
bySam Bowne
 
CNIT 125 6. Identity and Access Management
bySam Bowne
 
1. Security and Risk Management
bySam Bowne
 

What's hot

PDF
CISSP Prep: Ch 4. Security Engineering (Part 1)
bySam Bowne
 
PDF
CISSP Prep: Ch 8. Security Operations
bySam Bowne
 
PDF
CNIT 125: Ch 2. Security and Risk Management (Part 2)
bySam Bowne
 
PDF
3. Security Engineering
bySam Bowne
 
PDF
CNIT 125 Ch 4. Security Engineering (Part 1)
bySam Bowne
 
PDF
CISSP Prep: Ch 6. Identity and Access Management
bySam Bowne
 
PDF
CNIT 125: Ch 2. Security and Risk Management (Part 1)
bySam Bowne
 
PDF
2. Asset Security
bySam Bowne
 
PDF
CNIT 125: Ch 2. Security and Risk Management (Part 2)
bySam Bowne
 
PDF
3. Security Engineering
bySam Bowne
 
PDF
CNIT 160 4e Security Program Management (Part 5)
bySam Bowne
 
PDF
CNIT 125 Ch 8. Security Operations
bySam Bowne
 
PPTX
CISSP - Chapter 3 - Physical security
byKarthikeyan Dhayalan
 
PDF
CNIT 160 4d Security Program Management (Part 4)
bySam Bowne
 
PDF
CNIT 121: 17 Remediation Introduction (Part 1)
bySam Bowne
 
PDF
CNIT 121: 16 Report Writing
bySam Bowne
 
PDF
CISSP Prep: Ch 2. Security and Risk Management I (part 2)
bySam Bowne
 
PPTX
Chapter 5 - Identity Management
byKarthikeyan Dhayalan
 
PDF
CISSP Prep: Ch 1: Security Governance Through Principles and Policies
bySam Bowne
 
PDF
Ch 7: Attacking Session Management
bySam Bowne
 
CISSP Prep: Ch 4. Security Engineering (Part 1)
bySam Bowne
 
CISSP Prep: Ch 8. Security Operations
bySam Bowne
 
CNIT 125: Ch 2. Security and Risk Management (Part 2)
bySam Bowne
 
3. Security Engineering
bySam Bowne
 
CNIT 125 Ch 4. Security Engineering (Part 1)
bySam Bowne
 
CISSP Prep: Ch 6. Identity and Access Management
bySam Bowne
 
CNIT 125: Ch 2. Security and Risk Management (Part 1)
bySam Bowne
 
2. Asset Security
bySam Bowne
 
CNIT 125: Ch 2. Security and Risk Management (Part 2)
bySam Bowne
 
3. Security Engineering
bySam Bowne
 
CNIT 160 4e Security Program Management (Part 5)
bySam Bowne
 
CNIT 125 Ch 8. Security Operations
bySam Bowne
 
CISSP - Chapter 3 - Physical security
byKarthikeyan Dhayalan
 
CNIT 160 4d Security Program Management (Part 4)
bySam Bowne
 
CNIT 121: 17 Remediation Introduction (Part 1)
bySam Bowne
 
CNIT 121: 16 Report Writing
bySam Bowne
 
CISSP Prep: Ch 2. Security and Risk Management I (part 2)
bySam Bowne
 
Chapter 5 - Identity Management
byKarthikeyan Dhayalan
 
CISSP Prep: Ch 1: Security Governance Through Principles and Policies
bySam Bowne
 
Ch 7: Attacking Session Management
bySam Bowne
 

Similar to CNIT 125 7. Security Assessment and Testing

KEY
How to break web applications
byDinis Cruz
 
PPTX
Security Testing.pptx
byosandadeshan
 
PPTX
Definitive Security Testing Checklist Shielding Your Applications against Cyb...
byKnoldus Inc.
 
PPT
Web Application Security Testing
byMarco Morana
 
PPTX
Penetration testing dont just leave it to chance
byDr. Anish Cheriyan (PhD)
 
DOC
Semi-Automated Security Testing of Web applications
byRam G Athreya
 
PPT
CohenNancyPresentation.ppt
bymypc72
 
PPTX
Integrating security into the application development process
byJerod Brennen
 
PDF
Datasheet app vulnerability_assess
byBirodh Rijal
 
PDF
Cyber Crime / Cyber Secuity Testing Architecture by MRITYUNJAYA HIKKALGUTTI (...
byMrityunjayaHikkalgut1
 
PPSX
Introduction to software testing
byVenkat Alagarsamy
 
PDF
2019 FRSecure CISSP Mentor Program: Class Nine
byFRSecure
 
PPTX
How to Get the Most Out of Security Tools
bySecurity Innovation
 
PDF
Web app penetration testing best methods tools used
byZoe Gilbert
 
PDF
The Fundamentals of Penetration Testing.pptx (1).pdf
byapurvar399
 
PPTX
Security testing fundamentals
byCygnet Infotech
 
PPTX
An integrated security testing framework and tool
byMoutasm Tamimi
 
PPTX
Agile and Secure Development
byNazar Tymoshyk, CEH, Ph.D.
 
PDF
PENETRATION TESTING LECTURE SLIDES start
byDorcask3
 
PDF
Introduction to Application Security Testing
byMohamed Ridha CHEBBI, CISSP
 
How to break web applications
byDinis Cruz
 
Security Testing.pptx
byosandadeshan
 
Definitive Security Testing Checklist Shielding Your Applications against Cyb...
byKnoldus Inc.
 
Web Application Security Testing
byMarco Morana
 
Penetration testing dont just leave it to chance
byDr. Anish Cheriyan (PhD)
 
Semi-Automated Security Testing of Web applications
byRam G Athreya
 
CohenNancyPresentation.ppt
bymypc72
 
Integrating security into the application development process
byJerod Brennen
 
Datasheet app vulnerability_assess
byBirodh Rijal
 
Cyber Crime / Cyber Secuity Testing Architecture by MRITYUNJAYA HIKKALGUTTI (...
byMrityunjayaHikkalgut1
 
Introduction to software testing
byVenkat Alagarsamy
 
2019 FRSecure CISSP Mentor Program: Class Nine
byFRSecure
 
How to Get the Most Out of Security Tools
bySecurity Innovation
 
Web app penetration testing best methods tools used
byZoe Gilbert
 
The Fundamentals of Penetration Testing.pptx (1).pdf
byapurvar399
 
Security testing fundamentals
byCygnet Infotech
 
An integrated security testing framework and tool
byMoutasm Tamimi
 
Agile and Secure Development
byNazar Tymoshyk, CEH, Ph.D.
 
PENETRATION TESTING LECTURE SLIDES start
byDorcask3
 
Introduction to Application Security Testing
byMohamed Ridha CHEBBI, CISSP
 

More from Sam Bowne

PDF
Introduction to the Class & CISSP Certification
bySam Bowne
 
PDF
Cyberwar
bySam Bowne
 
PDF
3: DNS vulnerabilities
bySam Bowne
 
PDF
8. Software Development Security
bySam Bowne
 
PDF
4 Mapping the Application
bySam Bowne
 
PDF
3. Attacking iOS Applications (Part 2)
bySam Bowne
 
PDF
12 Elliptic Curves
bySam Bowne
 
PDF
11. Diffie-Hellman
bySam Bowne
 
PDF
2a Analyzing iOS Apps Part 1
bySam Bowne
 
PDF
9 Writing Secure Android Applications
bySam Bowne
 
PDF
12 Investigating Windows Systems (Part 2 of 3)
bySam Bowne
 
PDF
10 RSA
bySam Bowne
 
PDF
12 Investigating Windows Systems (Part 1 of 3
bySam Bowne
 
PDF
9. Hard Problems
bySam Bowne
 
PDF
8 Android Implementation Issues (Part 1)
bySam Bowne
 
PDF
11 Analysis Methodology
bySam Bowne
 
PDF
8. Authenticated Encryption
bySam Bowne
 
PDF
7. Attacking Android Applications (Part 2)
bySam Bowne
 
PDF
7. Attacking Android Applications (Part 1)
bySam Bowne
 
PDF
5. Stream Ciphers
bySam Bowne
 
Introduction to the Class & CISSP Certification
bySam Bowne
 
Cyberwar
bySam Bowne
 
3: DNS vulnerabilities
bySam Bowne
 
8. Software Development Security
bySam Bowne
 
4 Mapping the Application
bySam Bowne
 
3. Attacking iOS Applications (Part 2)
bySam Bowne
 
12 Elliptic Curves
bySam Bowne
 
11. Diffie-Hellman
bySam Bowne
 
2a Analyzing iOS Apps Part 1
bySam Bowne
 
9 Writing Secure Android Applications
bySam Bowne
 
12 Investigating Windows Systems (Part 2 of 3)
bySam Bowne
 
10 RSA
bySam Bowne
 
12 Investigating Windows Systems (Part 1 of 3
bySam Bowne
 
9. Hard Problems
bySam Bowne
 
8 Android Implementation Issues (Part 1)
bySam Bowne
 
11 Analysis Methodology
bySam Bowne
 
8. Authenticated Encryption
bySam Bowne
 
7. Attacking Android Applications (Part 2)
bySam Bowne
 
7. Attacking Android Applications (Part 1)
bySam Bowne
 
5. Stream Ciphers
bySam Bowne
 

Recently uploaded

PPTX
English Home Language & First Additional Language P2 Preparation.pptx
byMasingita Maswanganye
 
PDF
History of Department of AIHC and Archaeology_BHU
byBanaras Hindu University
 
PPTX
Hudson Vitale "AI Essentials: From Tools to Strategies: A 2025 NISO Training ...
byNational Information Standards Organization (NISO)
 
PDF
Yaksha Prashna | General Quiz at RLAC | Amlan Sarkar | Full Set
byAmlan Sarkar
 
PPTX
Types of contract under Indian Contract Law.pptx
byKeerthana Chinnathambi
 
PPTX
Single entry System Vs Double entry System.pptx
bylavanyafranklin0804
 
PPTX
Composition and characteristics of blood
byManarat International University
 
PPTX
Welcome to our Open Evening 2025 Ballinrobe CS
byjacollins1515
 
PPTX
How to Create a Manifest File in Odoo 18
byCeline George
 
PPTX
psychoanalytic Theory.pptx, MSc. Nursing
byKomalJaiswal46
 
PPTX
How can education build trust in a polarised world_Jonathan James_OECD .pptx
byEduSkills OECD
 
PPTX
Capitol Doctoral Presentation --October 2025.pptx
byCapitolTechU
 
PDF
TUYỂN CHỌN 30 ĐỀ THI CHỌN HỌC SINH GIỎI LỚP 9 CÁC TỈNH NĂM 2024-2025 MÔN TIẾN...
byNguyen Thanh Tu Collection
 
PDF
Ascertaining the Level of Work Difficulty for Work Planning (for grant propos...
byShalin Hai-Jew
 
PDF
Unofficial Draft by Simanchala Sarab: #GNDU #B.A. B.Ed. (#ITEP) #Pre-Interns...
bySimanchala Sarab, BABed(ITEP Secondary stage) in History student at GNDU Amritsar
 
PPTX
Exploring Entrepreneurial Qualities: A Curated Presentation for Grade 11 Busi...
bySamanthaNkoana
 
PPTX
Project Dashboard in Odoo 18 Project
byCeline George
 
PDF
An Incremental and Participatory Toolbox for Urban Planning
byssuser9d8e4e
 
PDF
Total Quality Management : A presentation by a third year student.
byMbalenhle Ndlovu
 
PPTX
Classification and Applied Aspects of Joints.pptx
byMathew Joseph
 
English Home Language & First Additional Language P2 Preparation.pptx
byMasingita Maswanganye
 
History of Department of AIHC and Archaeology_BHU
byBanaras Hindu University
 
Hudson Vitale "AI Essentials: From Tools to Strategies: A 2025 NISO Training ...
byNational Information Standards Organization (NISO)
 
Yaksha Prashna | General Quiz at RLAC | Amlan Sarkar | Full Set
byAmlan Sarkar
 
Types of contract under Indian Contract Law.pptx
byKeerthana Chinnathambi
 
Single entry System Vs Double entry System.pptx
bylavanyafranklin0804
 
Composition and characteristics of blood
byManarat International University
 
Welcome to our Open Evening 2025 Ballinrobe CS
byjacollins1515
 
How to Create a Manifest File in Odoo 18
byCeline George
 
psychoanalytic Theory.pptx, MSc. Nursing
byKomalJaiswal46
 
How can education build trust in a polarised world_Jonathan James_OECD .pptx
byEduSkills OECD
 
Capitol Doctoral Presentation --October 2025.pptx
byCapitolTechU
 
TUYỂN CHỌN 30 ĐỀ THI CHỌN HỌC SINH GIỎI LỚP 9 CÁC TỈNH NĂM 2024-2025 MÔN TIẾN...
byNguyen Thanh Tu Collection
 
Ascertaining the Level of Work Difficulty for Work Planning (for grant propos...
byShalin Hai-Jew
 
Unofficial Draft by Simanchala Sarab: #GNDU #B.A. B.Ed. (#ITEP) #Pre-Interns...
bySimanchala Sarab, BABed(ITEP Secondary stage) in History student at GNDU Amritsar
 
Exploring Entrepreneurial Qualities: A Curated Presentation for Grade 11 Busi...
bySamanthaNkoana
 
Project Dashboard in Odoo 18 Project
byCeline George
 
An Incremental and Participatory Toolbox for Urban Planning
byssuser9d8e4e
 
Total Quality Management : A presentation by a third year student.
byMbalenhle Ndlovu
 
Classification and Applied Aspects of Joints.pptx
byMathew Joseph
 

CNIT 125 7. Security Assessment and Testing

  • 1.
  • 2.
  • 3.
    Penetration Testing • Authorizedwhite hat hacker breaks into an organization
  • 4.
    Social Engineering • Exploitingthe human mind • Often tricks the user into clicking a link • Zero-knowledge (black box) test • No information provided to attacker • Full-knowledge test • Provides pen tester with network diagram, policies and procedures, and sometimes results from previous pen testers • Partial-knowledge test
  • 5.
    Penetration Tester Toolsand Methodology • Metasploit (open source) • Core Impact and Immunity Canvas (closed source) • Methodology
  • 6.
    Assuring Confidentiality, DataIntegrity, and System Integrity • Pen testers must ensure confidentiality of data they access • Report should be treated as confidential
  • 7.
    Vulnerability Testing • Alsocalled Vulnerability Scanning • Uses a tool like Nessus or OpenVAS • Finds vulnerabilities • Requires manual verification and assessment • Must be matched to real threats to find true risk
  • 8.
    Security Audit • Testsagainst a public standard • Such as PCI-DSS (Payment Card Industry Data Security Standard)
  • 9.
    Security Assessment • Viewmany controls across multiple domains • Policies and procedures • Administrative controls • Change management • Other tests (pen tests, vuln assessments, security audits)
  • 10.
    Internal and ThirdParty Audits • Internal audits • Assessing adherence to policy • External audits • Require security professionals to play a role • Response and remediation to audit findings • Demonstrating mitigations
  • 11.
    Log Reviews • Easiestway to verify that access control mechanisms are working
  • 12.
    Centralized Logging • Acentral repository allows for more scalable security monitoring and intrusion detection • Syslog transmits log data in plaintext over UDP port 514 • Log retention • May be relevant to legal or regulatory compliance
  • 13.
  • 14.
    Software Testing Methoda •Discovering programmer errors • Custom apps don't have a vendor providing security patches • Source code review helps • Two general approaches: • Static and dynamic analysis • Also manual code review • Pair programming is employed in agile programming shops
  • 15.
    Static and DynamicTesting • Static testing: the code is not running • Review source code for insecure practices, unsafe functions, etc. • Unix program lint • Compiler warnings • Dynamic testing: while code is executing • White box testing: tester has source code • Black box: tester has no internal details
  • 16.
    Traceability Matrix • Mapscustomer requirements to software testing plan
  • 17.
    Synthetic Transactions • Simulatingbusiness activities • Often used for Web apps
  • 18.
    Software Testing Levels •Unit testing • Tests components like functions, procedures, or objects • Installation testing • Tests software as it is installed and first operated • Integration Testing • Testing multiple software components as they are combined into a working system
  • 19.
    Software Testing Levels •Regression testing • Testing softare after updates, modification, or patches • Acceptance testing • Testing to ensure the software meets the customer's requirements • When done by customer, called User Acceptance Testing
  • 20.
    Fuzzing • A typeof black box testing • Sends random malformed data into software programs • To find crashes • A type of dynamic testing • Has found many flaws
  • 21.
    Combinatorial Software Testing •Seeks to identify and test all unique combinations of software inputs • Pairwise testing (also called all pairs testing)
  • 22.
    Misuse Case Testing •Formally model an adversary misusing the application • A more formal and commonly recognized way to consider negative security outcomes is threat modeling • Microsoft highlights it in their Security Development Lifecycle (SDL)
  • 23.
    Test Coverage Analysis •Identifies the degree to which code testing applies to the entire application • To ensure that there are no significant gaps
  • 24.
    Analyze and ReportTest Outputs • Security test results are easy to produce • Actually improving security is much more difficult • Data must be analyzed to determine what action to take