A software development team is launching a new web platform. They want to uncover flaws that reveal themselves while the application runs under normal operating conditions. Which approach meets this goal and exercises the environment in real time?
Examining the source code for vulnerabilities
Monitoring network traffic at a passive interceptor
Active evaluation of the running application detects issues that appear when the system handles simulated requests and processes data in real time. Examining the source code may locate coding errors, but it lacks insight into run-time conditions. Monitoring network traffic at a passive interceptor gathers packets without probing for vulnerabilities. Reviewing code changes through a team process improves code quality but does not demonstrate how the platform responds under live conditions.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is active evaluation in application testing?
Open an interactive chat with Bash
How is active evaluation different from examining source code?