Under the US Computer Fraud and Abuse Act (CFAA), what is the primary legal requirement before conducting a penetration test?
-
A
Filing a report with the FBI
-
B
Obtaining written authorization from the system owner
-
C
Registering with a government agency
-
D
Completing a CREST certification