Security Test
Hi All,
Please help me to get clear understanding on the amount of test to be performed on API Security testing.
Example scenario:
I have 2 methods in my API with 5 fields each. My functional test generates more scenarios / test cases as input is based on the combinations of the fields.
Now I have created 10 Test Cases for 2 API methods.
Assumptions: (Please correct if my Assumption is wrong)
Security Test can be run only under Test Cases.
Clarifications on Execution:
1. Should I run the security check for all 10 Test Cases OR Security check for each method would be fine?
2. Is it good to run all types of Security Scan (Boundary scan, Fuzzing scan etc..) for both the methods OR only relevant Security Scan should be chosen for each method.
Please help me to get clear understanding on the amount of test to be performed on API Security testing.
Example scenario:
I have 2 methods in my API with 5 fields each. My functional test generates more scenarios / test cases as input is based on the combinations of the fields.
Now I have created 10 Test Cases for 2 API methods.
Assumptions: (Please correct if my Assumption is wrong)
Security Test can be run only under Test Cases.
Clarifications on Execution:
1. Should I run the security check for all 10 Test Cases OR Security check for each method would be fine?
2. Is it good to run all types of Security Scan (Boundary scan, Fuzzing scan etc..) for both the methods OR only relevant Security Scan should be chosen for each method.
