Quality is delighting customers
Security testing is a process to determine that an information system protects data and maintains functionality as intended.
The six basic security concepts that need to be covered by security testing are: confidentiality, integrity, authentication, authorization, availability and non-repudiation.
A security measure which protects against the disclosure of information to parties other than the intended recipient that is by no means the only way of ensuring the security.
refer this url: http://www.fylrr.com/archives.php?doc=NIST-SP800-42.pdf