This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Secure TDD Project"
From OWASP
Lauren Tabak (talk | contribs) |
Lauren Tabak (talk | contribs) |
||
Line 57: | Line 57: | ||
+ | |||
+ | TDD will help as follows: | ||
+ | |||
+ | TDD is not going to protect you from unknown threats. By its very nature, you have to know what you want to test in order to write the test in the first place.<br> | ||
+ | |||
+ | However, STDD will help us Defend against existing threat and help developers secure their product by reducing and eliminating vulnerabilities in software before deployment.<br> | ||
==Description== | ==Description== | ||
Line 63: | Line 69: | ||
Explain about the tool - VS add-on, rules engine and extensions. | Explain about the tool - VS add-on, rules engine and extensions. | ||
Explain when to use the tool - before development and when knowing the answers to business questions, e.g. user inputs | Explain when to use the tool - before development and when knowing the answers to business questions, e.g. user inputs | ||
+ | |||
+ | |||
+ | STDD tool is an Add-On for Microsoft Visual Studio, which will conduct security test scenarios, assisting us to find vulnerabilities, exploits and security bugs inside the code while using the TDD life cycle. | ||
+ | |||
Revision as of 19:37, 13 March 2014