|
▶ Test basis: According to the national standard GB/T25000.51-2016 "System and Software Engineering System and Software Quality Requirements and Evaluation (SQuaRE) Part 51: Quality Requirements and Test Rules for Ready-to-Use Software Products (RUSP)" and related safety standards and specifications Informatization projects conduct online or acceptance security tests, including host and application system security, and comprehensively evaluate informatization projects mainly from security functions, vulnerability scanning, penetration testing, and source code auditing. ▶ Testing process: The security vulnerabilities of the system are divided into high, medium, and low risk levels. The security vulnerabilities above medium risk are modified and processed, and the second stage of regression testing is carried out. After the regression testing is passed, a security evaluation report is finally issued. ▶ Customer Benefits : 1. Meet network security level protection and other periodic internal and external security compliance requirements. 2. Through comprehensive security testing, the production environment can be guaranteed while effectively reducing the labor costs required by the testing and operation and maintenance teams in terms of security. 3. Protect the production environment from loss of system availability and business continuity caused by application layer attacks. 4. Protect the core source code of the application, prevent the core logic of the application from being reversely analyzed, and protect the algorithm and intellectual property rights. |
