Security

Articles

	What IoT and Embedded Device Testers Can Learn from the Volkswagen Emissions Scandal In 2015, it was discovered that Volkswagen had equipped millions of its cars with software to cheat on diesel emissions tests. It was a team of independent testers that uncovered the fraud. Jon Hagar tells testers what they can take away from the scandal and gives some recommendations to consider in order to improve the test industry for IoT and embedded systems.	Jon Hagar January 16, 2017
	Test Data Privacy: Start Now to Comply with New Regulations The key for test data privacy is fulfilling testers’ needs for efficiency, speed, and the most accurate representations of data and application behavior in the production environment, while ensuring privacy and protecting testers from unintentional hazards. Here are some tips for getting started on a test data privacy project to comply with the EU’s coming General Data Protection Regulation.	Marcin Grabinski December 12, 2016
	Using the Principles of the CIA Triad to Implement Software Security If you're starting or improving a security program for your software, you probably have questions about the requirements that define security. Data need to be complete and trustworthy, and also accessible on demand, but only to the right people. The CIA triad defines three principles—confidentiality, integrity, and availability—that help you focus on the right security priorities.	Sylvia Killinen May 16, 2016
	How to Talk about Security Testing without Scaring People When it came to security testing, Sylvia Killinen noted that her company's most frequent difficulty wasn't the testing itself. Instead, it was the communication that provided problems, in part because of the words used to explain what would be performed. If you take care with how you describe your process, you may get more support while executing tests and repairing systems.	Sylvia Killinen June 1, 2015

	Getting Started with Security Testing: An Interview with Jeff Payne Video In this interview, Jeff Payne, the CEO and founder of Coveros, talks about software security. He discusses the Internet of Things and how it relates to safety-critical devices, some useful tools, how testers can test for security, and how DevOps pushes that process earlier in your lifecycle.	Jennifer Bonine June 2, 2017
	Innovations within the Internet of Things: An Interview with Wilson Mar Video In this interview, Wilson Mar, an architect, developer, performance tester, and manager, talks with Jennifer Bonine about cutting-edge technologies in 3D printing and the Internet of Things. He talks about the importance of security and automation, and what we can expect down the road.	Jennifer Bonine May 5, 2017
	Testing Faster, Better, and Cheaper with Continuous Delivery: An Interview with Gene Gotimer Video In this interview, Gene Gotimer, the senior architect at Coveros, explains how you can test better, deploy features into production faster with continuous delivery, and arrange your tests so each round provides just enough testing to give you confidence.	Josiah Renaudin January 27, 2017
	Testing with a DevOps Approach: An Interview with Tom Stiehm Video In this interview, Tom Stiehm of Coveros explains how you can integrate test automation with DevOps to create a continuous testing environment. In this performance-driven environment, software development, testing, and operations must evolve to meet iteration and release delivery goals.	Jennifer Bonine December 23, 2016

Better Software Magazine Articles

	What if Someone Steals Your Code? Bob Zeidman, an expert in software forensics, provides a great overview of how to protect your software from predators. You'll learn the difference between copyrights, trade secrets, and patents.	Bob Zeidman November 11, 2016
	Pitfalls of Developing for the IoT The Internet of Things (IoT) enables amazing software-powered devices designed to make our business and personal lives easier. Lev Lesokhin discusses four fundamental practices you'll need when developing sophisticated software for the IoT.	Lev Lesokhin July 14, 2016
	Your Professional Responsibility for Security and Performance It is Johanna Rothman's belief that security and performance are no longer nonfunctional requirements in modern-day software development. Instead, we must prepare to accommodate security and performance needs in all projects.	Johanna Rothman April 28, 2016
	A Radical View of Software Licensing and Piracy Software vendors are making extraordinary efforts to protect the installation and use of apps, but have they gone too far? Preventing software piracy can have an adverse effect on genuine users. Software licensing technology, according to Steve, needs to strike the best balance of protecting the asset while trusting the customer.	Steven Cholerton September 12, 2014

Conference Presentations

	The T-Shaped Scrum Team: Get in Shape for Your Future Slideshow Today, agile teams are being asked to do more than ever before. The notion of a T-shaped person, created by Tim Brown (CEO of IDEO) in the 1990s, describes a new breed of worker—one who goes beyond the standard, assigned role. Mary Thorn believes that the roles of team members can stretch...	Mary Thorn
	Vulnerabilities and Bugs in Mobile Apps with Quick Tours Slideshow As mobile devices, tools, operating systems, and web technologies rapidly evolve, testers in this changing domain must quickly adapt their thinking. Testers often struggle to find critical vulnerabilities and bugs in mobile applications due to lack of guidance, experience, and the right...	Raj Subramanian
	A New Approach to IoT Safety, Risk, and Vulnerability Analysis Slideshow The ugly truth is that the interconnection of devices with IoT systems can lead to failures which result in physical injury, unacceptable risk, or cybersecurity vulnerabilities. Preventing such accidents requires identifying hazards, risks, and security vulnerabilities during development.	Gregory Pope
	Building and Testing Secure Mobile Apps Slideshow Mobile application development is now a mission-critical component of IT organizations and a big part of the software industry’s landscape. Due to the security threats associated with mobile devices, it is critical we build our apps—from the ground up—to be secure and trustworthy. However...	Alan Crouch

Recommended Web Seminars

Jul 20	Build a Competitive Advantage through Software Quality Assurance
Jul 25	The Top 5 Ways to Automate Your DevOps Pipeline
Jul 27	How to Automate Web App Testing Using Open Source Frameworks
Aug 15	Step Up Your Security and Privacy with Data Masking
Aug 24	How Artificial Intelligence, Machine Learning, and Analytics Will Transform Testing

See All

Featured Resources

Using Model-Based Testing to Drive Behavior-Driven Development | CA Technologies

Silk Mobile Testing | Micro Focus

Testing—The Missing Piece in DevOps and Continuous Delivery | Tricentis

Automated Testing: Coping with Change | CA Technologies

The Mobile Multiplier Effect | Micro Focus

Visit Our Other Communities

Bringing you today’s best agile ideas and thought-leaders with how-to advice on the latest agile development & methodology practices.

Where configuration management and development professionals go for answers on SCM, ALM, change management, DevOps, tools and more.

StickyMinds is a TechWell community.

Through conferences, training, consulting, and online resources, TechWell helps you develop and deliver great software every day.

Announcing the release of the Summer 2017 Better Software Magazine

Cover 19-3_100_border In this issue’s cover story, “10 Lessons Learned in Cross-Platform Development" Dewey Hou removes the mystery of how to create apps for both Windows and macOS. There are two feature articles that focus on how to be agile in unconventional ways, an article with advice to help manage technically brilliant but challenging workers and TechWell's own Mike Sowers offers key words of wisdom on developing software faster, better and cheaper in DevOps environments. This issue is loaded with the highest page count over the past four years. To download this free issue, click here.

Tweets Follow @stickyminds

Community Sponsors

Upcoming Events

Sep 12	Agile Testing Training Week Agile testing and test automation training for test/QA and development professionals
Oct 01	STARWEST Software Testing Conference in Anaheim
Oct 15	STARCANADA Software Testing Conference in Toronto
Nov 05	Agile Dev East The Conference for Agile Practitioners

Welcome