|
View previous topic :: View next topic
|
| Author |
Message |
Saint Cruz
New User
Joined: 20 Aug 2007
Posts: 2
Location: China
|
|
|
|
| Can anyone share some ideas or experience on the security testing? |
|
| Back to top |
|
 |
Devzee
Active Member
Joined: 20 Jan 2007
Posts: 684
Location: Hollywood
|
|
|
|
Please define what according to your requirement is security testing.
Are you referring to Online environment transaction security testing?
Security access to Tables/ Database? |
|
| Back to top |
|
|
Saint Cruz
New User
Joined: 20 Aug 2007
Posts: 2
Location: China
|
|
|
|
| Devzee wrote: |
Please define what according to your requirement is security testing.
Are you referring to Online environment transaction security testing?
Security access to Tables/ Database? |
Yes,Devzee,what you have mentioned is part of my task.Actually what I'm trying to test is an application test environment consists of OPC,CICS,DB2 and some program libraries under the management of SCLM as well.Now we are working on the ST/SIT phase,and the environment should be tested at first.What I'm thinking about is to verify the authoritis to make sure the people who will perform ST/SIT could have the proper access.Can you share your experience or is there a comman way that I can follow? |
|
| Back to top |
|
|
Devzee
Active Member
Joined: 20 Jan 2007
Posts: 684
Location: Hollywood
|
|
|
|
If security access rules are setup correctly then there shouldnt be any issues. Setting up access rules should follow your setup guidelines, I assume you are not writing access rules from scratch.
I dont think you can simulate the security testing without logging on using user logons and verifying the security.
When users are testing if they dont have access will call you? |
|
| Back to top |
|
|
|
|
