Cookie policy: This site uses cookies (small files stored on your computer) to simplify and improve your experience of this website. Cookies are small text files stored on the device you are using to access this website. For more information on how we use and manage cookies please take a look at our privacy and cookie policies. Some parts of the site may not work properly if you choose not to accept cookies.

sections
Home > Cenzic > Web Application Security: The Truth About White Box Testing vs. Black Box Testing
 

Web Application Security: The Truth About White Box Testing vs. Black Box Testing

White Paper Published By: Cenzic
Cenzic
Published:  Nov 11, 2008
Type:  White Paper
Length:  11 pages

This paper explores the role of white box vs. black box testing. White box testing technologies have a definite but limited use and value. From a Web application security perspective it must be understood that significant blind spots come with white box testing. Ultimately white box testing is not sufficient to secure your applications: simply put organizations that rely solely on white box technologies will be exposed to vulnerabilities in their applications, thus making it an ineffectual method of testing real-world risks. This paper will demonstrate black box or dynamic testing is ultimately the appropriate solution for “truly” securing Web applications.



Tags : 
cenzic, web application security, white box texting, black box testing, secure web applications, cenzic, security