Fault Attack Testing Flashcard

The system should sanitize user inputs to remove or neutralize potentially harmful content like script tags. This prevents Cross-Site Scripting (XSS) attacks, which can compromise user data and system security. Executing scripts from user input is a major security risk and must be prevented.

The purpose of load testing is to ensure the system can handle high traffic under stress. A properly optimized and scalable system should maintain performance and stability even when 1,000 users attempt to log in at the same time. Crashing or slowing down indicates a failure to meet performance requirements.

Stress testing helps identify how a system behaves under extreme conditions. A robust system should detect and manage unusually high traffic—such as large, repeated data requests—without crashing or becoming unresponsive. This includes throttling, rate limiting, or rejecting abusive traffic to maintain overall availability and performance.

Age fields should only accept realistic, non-negative values within a defined range. Allowing negative numbers is a data validation flaw that could lead to system errors or incorrect data handling. Proper input validation helps maintain data integrity and prevents invalid or nonsensical entries.

We can create a total of five test cases from the given classification tree.