Web Application Security Testing

Why Trust Techopedia

What Does Web Application Security Testing Mean?

Web application security testing is the process of testing, analyzing and reporting on the security level and/or posture of a Web application.

Advertisements

It is used by Web developers and security administrators to test and gauge the security strength of a Web application using manual and automated security testing techniques. The key objective behind Web application security testing is to identify any vulnerabilities or threats that can jeopardize the security or integrity of the Web application.

Techopedia Explains Web Application Security Testing

Web application security testing is a broad process that includes a multitude of processes that enable security testing of a Web application. It is a systematic process that starts from identifying and scoping the entire application, followed by planning multiple tests.

Typically, Web application security testing is performed after the Web application is developed. The Web application undergoes a rigorous testing process that includes a series of fabricated malicious attacks to see how well the Web application performs/responds. The overall security testing process is generally followed by a format report that includes the identified vulnerabilities, possible threats and recommendations for overcoming the security shortfalls.

Some of the processes within the testing process include:

  • Brute force attack testing
  • Password quality rules
  • Session cookies
  • User authorization processes
  • SQL injection
Advertisements

Related Terms

Margaret Rouse
Technology Specialist
Margaret Rouse
Technology Specialist

Margaret is an award-winning writer and educator known for her ability to explain complex technical topics to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles in the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret’s idea of ​​a fun day is to help IT and business professionals to learn to speak each other’s highly specialized languages.