Which of the following is NOT related to the Internal Security Assessment penetration testing
strategy?
A.
Testing to provide a more complete view of site security
B.
Testing focused on the servers, infrastructure, and the underlying software, including the
target
C.
Testing including tiers and DMZs within the environment, the corporate network, or
partner company connections
D.
Testing performed from a number of network access points representing each logical and
physical segment