A company is in the process of implementing a new front end user interface for its customers, the goal is to provide them with more self service functionality. The application has been written by developers over the last six months and the project is currently in the test phase.
Which of the following security activities should be implemented as part of the SDL in order to provide the MOST security coverage over the solution? (Select TWO).
A . Perform unit testing of the binary code
B . Perform code review over a sampling of the front end source code
C . Perform black box penetration testing over the solution
D . Perform grey box penetration testing over the solution
E . Perform static code review over the front end source code
Answer: D, E
Leave a Reply