This event has ended. Visit the official site or create your own event on Sched.
Back To Schedule
Friday, June 4 • 14:40 - 15:30
Logical security tests with test automation

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Software development is expecting shorter and shorter feedback loops. The applications are deployed more often. There isn't time for security audit. Instead the security must be built in, and tested all the time. Automated security scanners do not understand the application so they can't test the logical issues. How to solve this problem? Normal test automation stack should include tests which are testing the access controls, logic and state management. During this presentations I show you with examples what kind of security tests the test automation should test and how to do it at API level.

Key takeaways:
  • Understanding why the logical security issues should be part of test automation
  • List of things which should be normal part of test automation but are usually ignored
  • Test automation should be done from the API level

avatar for Teemu Vesala

Teemu Vesala

DevOps and DevSecops Consultant, NorthCode

Friday June 4, 2021 14:40 - 15:30 EEST