Dovetail completes third-party external penetration tests to independently assess the security, vulnerability, integrity and availability of the Dovetail web application at least annually.
Penetration test briefing note
Download the customer briefing note from our latest penetration test, performed in December 2021, by CyberCX cybersecurity consultants.
The testing follows a consistent and structured approach, and represents a point in time assessment of the nature and extent of potential or existing exposures that may lead to a compromise of the environment. Testing is based on best practice methodologies, such as the Open Web Application Security Project (OWASP) guides (which goes beyond the OWASP Top 10 and includes 109 tests) and CWE/SANS Top 25 Most Dangerous Software Errors, in combination with other in-house developed processes and methodologies.
Dovetail has engaged CyberCX cybersecurity consultants to perform web application penetration testing on an ongoing basis.