From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Unlock the full course today

Join today to access over 24,400 courses taught by industry experts.

Identifying undocumented functionality

Identifying undocumented functionality

From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Start my 1-month free trial Buy for my team

Identifying undocumented functionality

- [Instructor] Your applications may pass their verification and validation test, but that doesn't mean you've tested everything. One of the trickier things you'll want to do is attempt to identify undocumented functionality in those applications. One of the oldest jokes in the developer community is, "It's not a bug, it's a feature." This is the sometimes funny, sometimes scary response that you'll get when you make the application do something it wasn't supposed to do. Application development is tricky and a lot of applications grow to the point that this unintended or undocumented functionality can slip in. Sometimes it's easier for a developer to joke that, "I meant to do that," than it is to face the mountain of debugging and retesting necessary to find the root cause of the application's newly discovered behavior. Oftentimes, this undocumented functionality ends up in the application accidentally. This can happen when developers add a snippet of code to help them troubleshoot a…

Contents