Question / Problem:
Does Kofax perform penetration testing or other security-related testing and is that information available to customers?
Answer / Solution:
Yes. There is testing done to ensure product safety. Testing related to output encoding, click-jacking, Cross-Site Request Forgery, SQL Injection, database queries, cookie data, user session data, session time-outs, failed login attempts, and security event logging are included and follow the OWASP standard.
For additional information, please submit a Technical Support Case for each of your Kofax product(s) with your specific requests.