Who wrote this stuff? « Daily Blogs!

2005, Nov 22

Who wrote this stuff?

Filed under: Uncategorized — Hrishikesh @ 22:38

There is this paragraph in a set of notes on Software Engineering and Object Oriented Analysis and Design that a friend recommended:

Security testing attempts to verify that protection mechanisms built into a system, will, in fact, protect it from improper penetration. To quote Beizer, “The system’s security must, of course, be tested for invulnerability from frontal attack, but it must also be tested for invulnerability from rear attack.”

Now, is it just me, or can this be also be considered an extract from a condom quality control company’s brochure?

Further:

During security testing, the tester plays the role of the individual who desires to penetrate the system. Anything goes! The tester may attempt to acquire passwords from external clerical means; they may have been constructed, overwhelming the system, thereby deny access to others; may purposely cause system errors, hoping to penetrate the system during recovery; may browse through insecure data, hoping to find the key to system entry.

Bleh!

Also from the notes: In some cases, a system must be fault torrent (sic).

Comments (4)

http://www.blogger.com/profile/5118250 Nadeem Mohsin

I don’t know about this ‘fault-torrent’ business, but these notes sound like some sort of crap-torrent.
http://www.blogger.com/profile/5118250 Nadeem Mohsin

I don’t know about this ‘fault-torrent’ business, but these notes sound like some sort of crap-torrent.
http://www.blogger.com/profile/8577481 SagYer

The first quoted para does sound hilarious!
http://www.blogger.com/profile/8577481 SagYer

The first quoted para does sound hilarious!