STAREAST 2025 - Security
Customize your STAREAST 2025 experience with sessions covering security for software developers and testers.
Wednesday, April 30
The Future of IAM Security: It's Continuous, It's Tested
Everything that has a beginning also has an end...except a circle. IAM is going through a renaissance, if you will, and it is referred to as Continuous Identity or Modern IAM. Testing for IAM can be complicated already. With the move to continuous it is transforming into event-driven IAM and takes an already complicated domain and adds in constantly changing context, fun times! So, how do you test something that is constantly evolving and changing based on dynamic business needs, security or policy? You take the blue pill, the IAM story ends. You wake up in your bed and believe whatever...
SQL Server Indexing Strategies Using Query Store for Improved Performance in Retrieving Data
In the realm of database management, optimizing query performance is crucial, especially for SQL Server environments dealing with large datasets. The challenge lies in identifying and implementing effective indexing strategies that can significantly enhance data retrieval performance. During her talk, Navya will address the common issues of slow query performance and inefficient indexing, often exacerbated by the complexity of modern data systems and the dynamic nature of query patterns. To tackle this problem, she leveraged SQL Server's Query Store feature, which provides a powerful tool...
Thursday, May 1
Using AI in Testing, Development, and Production to Automate Fraud Prevention
In today's rapidly evolving digital landscape, preventing fraud and ensuring security of applications through development and production has become paramount. However, the traditional manual approaches to security testing, fraud detection and functional testing of apps once they have been protected is time-consuming, error-prone, and often fails to keep pace with emerging threats such as FaceID bypass using deepfakes. This session will explore the challenges and opportunities at the intersection of automating security testing, fraud detection and testing protected applications. Karen will...
Applying Software Testing Principles to Risk Management Control Testing
PreviewIn today's dynamic business environment, robust risk management is crucial for organizational success. Traditional approaches to risk management control testing often focus on compliance, but they can benefit significantly from the rigorous methodologies developed in software testing. This presentation will explore how core software testing principles—such as test case design, automation, regression testing, and defect tracking—can be effectively applied to enhance the effectiveness and efficiency of risk management control testing. Attendees will learn how to leverage these...