Application Security

Information Security and Policy's (ISP) Application Security Testing Program (ASTP) offers a consultative application security assessment for applications handling Protection Level 2 Data. These assessments are similar to penetration tests and provide a hands-on, manual security evaluation of an application. Any UC Berkeley application handling Protection Level 2 Data, including California State Law "Notice-Triggering information", must pass an application security assessment to remain in compliance with the UC Berkeley Minimum Security Standards for Electronic Information (MSSEI).

Service details

Service category

Quick Links

Report an IT security incident   Check System Status   Search the Knowledge Base