Security Test Driven Development (STDD) Using Selenium/Appium
Surendran Ethiraj – Project Lead – SDET, Xpanxion International Pvt Ltd
In an increasingly connected world, security has come to the forefront. Developers hold one of the earliest opportunities to increase the security of their website or application. In this presentation, Surendran will examine using existing test driven development tools and practices to incorporate a greater emphasis on security into the development process.
Security Test Driven Development (STDD) is relatively a well-known process especially people who have used OWASP Secure TDD project (C# based) these type of tools are designed to analyze application source code, byte code and binaries for coding and design conditions that are indicative of security vulnerabilities however to perform a complete security verification we needed to detect conditions indicative of a security vulnerability in an application during its running state.
The presentation will cover looking into a solution which covers both Static Application Security Testing (SAST) and Dynamic Application Security Testing within a TDD environment to provide security angle to your development.