The security audit can be performed for different purposes :
- react to an attack
- get an idea of the level of security
- test the actual implementation
- test new equipment
- evaluate the evolution of security (involves a periodic audit)
In any case, its purpose is to check security. In the security cycle, verification occurs after an action has been completed. For example, when setting up a new component, it is good to test its security after integrating the component into a test environment, and before it is actually implemented.
The result is the audit report. This report indicates the exhaustive list of vulnerabilities identified by Secure Plus on the analyzed system. It also contains a list of recommendations to remove the vulnerabilities found.