Jeyasekar Marimuthu, McAfee
The number of software vulnerabilities exposed in recent times and the magnitude of impacts they have on customers is the key reason why effective security testing is required for software development organizations.
When proper security measures are not taken, a company not only puts their reputation at stake, this also puts their customers and their customers’ sensitive data at risk. The magnitude of a data breach will vary – from financial loss, to loss of life – depending on the software deployment. Data exploitation in any form through software vulnerabilities affects the credibility of system and the company.
Effective security testing is achieved by and by understanding security at deeper levels and adopting key security measures in the PLF (Project Life Cycle). Software experts write tests for each layer, then measured via manual and tool based audits.
It is important to plan measures targeting the prevention of security breaches. Some of the known practices to prevent security breaches in software include vulnerability scans, security assessment, penetration tests, and security audits. Then, when issues arise, it is important to deploy counter measures before the problem magnifies.
This paper discusses various forms of software vulnerabilities and the measures to be taken to prevent them. The paper also details out some of the key security tools recommended for identifying security flaws.
Target audience: Intermediate
Jeyasekar Marimuthu, 2014 Technical Paper, Paper