Security testing

Security is a very wide-reaching term and can't be explained in a few lines. In general, security testing is a way of testing whether an application is secure or if there is any chance of leaking someone's data.

Security and secure systems will be discussed in Chapter 8, Securing RESTful Web Services.

Security testing is very important, especially when we working in web-based applications. Web applications are publicly available and vulnerable to attack, so authentication and authorization are the most important factors here.

FxCop (https://en.wikipedia.org/wiki/FxCop), which is shipped with Visual Studio and VeraCode (https://www.veracode.com/), is one of the most popular tools used in security testing.