Test phase partitioning
Security (SEC) and Penetration (PEN) testing are generally being considered part of a programme's non-functional requirements (NFR) testing (NFT) space, along with performance and volume (P&V) and failover and recovery (F&R).
Security Testing
Security Testing, an important testing practice within a modern test campaign, includes testing for source code vulnerabilities, network and systems security, and information security such as protection of personal identification information, etc. It is technical testing that needs to be completed professionally and efficiently.Security and Penetration Comparison
"SEC" - Security testing is generally white or grey box testing, validating the security architecture and design;In comparison,
"PEN" - Penetration testing is late stage, black box testing. See more SEC / PEN comparisons.
