Abstract: “Security testing is an integral part of risk management process and executives realize the benefits of an independent security test process. It is highly desirable to optimize the security test activities for a fast time-to-market while delivering a product that meets security expectation. Software security test process elaborates various testing activities and describes which activity is to be carried out when. Given the need and significance of phased approach of security testing, this article proposes a prescriptive framework elaborating security testing activities to be carried out while integrating it within the development life cycle.”

Keywords: Security Testing, Software Security Testing