Software Security Testing of Web Applications Based on SSD

被引:0
|
作者
Hui, Zhanwei [1 ]
Huang, Song [1 ]
机构
[1] PLA Univ Sci & Technol, Inst Comman Automat, PLA Software Test & Evaluat Ctr Mil Training, Nanjing, Jiangsu, Peoples R China
来源
ADVANCED INTELLIGENT COMPUTING THEORIES AND APPLICATIONS | 2010年 / 93卷
关键词
Software security test; Function test; Vulnerability; Software security defect; Defect behavior;
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Due to the increasing complexity of Web applications, traditional function security testing, which only tests and validates software security mechanisms, is becoming ineffective to detect latent software security defects (SSD). The number of reported web application vulnerabilities is increasing dramatically. However, the most of vulnerabilities result from some typical SSD. Based on SSD, this paper presents an effective software security testing (SST) model, which extends traditional security testing process to defects behavior analysis which incorporates advantages of traditional testing method and SSD-based security testing methodology. Primary applications show the effectiveness of our test model.
引用
收藏
页码:527 / 534
页数:8
相关论文
共 50 条
  • [1] Research on Technology of SSD-Based Software Security Testing
    Hui, Zhan-wei
    Huang, Song
    Hu, Bin
    Rao, Li-ping
    Wang, Xin-gang
    ASIA-PACIFIC YOUTH CONFERENCE ON COMMUNICATION TECHNOLOGY 2010 (APYCCT 2010), 2010, : 291 - +
  • [2] Automated Software Testing for PHP Web Based Applications
    Caprita, Dan
    Mazilescu, Vasile
    SSE '09: PROCEEDINGS OF THE 11TH WSEAS INTERNATIONAL CONFERENCE ON SUSTAINABILITY IN SCIENCE ENGINEERING, 2009, : 285 - +
  • [3] Planning-based Security Testing of Web Applications
    Bozic, Josip
    Wotawa, Franz
    2018 IEEE/ACM 13TH INTERNATIONAL WORKSHOP ON AUTOMATION OF SOFTWARE TEST (AST), 2018, : 20 - 26
  • [4] Functional Based Testing in Web Services Integrated Software Applications
    Ramachandran, Selvakumar
    Santapoor, Lavanya
    Rayudu, Haritha
    ADVANCED COMPUTING, PT III, 2011, 133 : 130 - 138
  • [5] Security Testing Framework for Web Applications
    Alrawais, Layla Mohammed
    Alenezi, Mamdouh
    Akour, Mohammad
    INTERNATIONAL JOURNAL OF SOFTWARE INNOVATION, 2018, 6 (03) : 93 - 117
  • [6] Software security analysis and assessment model for the web-based applications
    Wang, Y.
    Lively, W. M.
    Simmons, D. B.
    JOURNAL OF COMPUTATIONAL METHODS IN SCIENCES AND ENGINEERING, 2009, 9 (01) : S179 - S189
  • [7] Knowledge-based security testing of web applications by logic programming
    Zech, Philipp
    Felderer, Michael
    Breu, Ruth
    INTERNATIONAL JOURNAL ON SOFTWARE TOOLS FOR TECHNOLOGY TRANSFER, 2019, 21 (02) : 221 - 246
  • [8] Planning-based security testing of web applications with attack grammars
    Josip Bozic
    Franz Wotawa
    Software Quality Journal, 2020, 28 : 307 - 334
  • [9] Vulnerability Model-based Web Applications Security Testing Approach
    He Cheng
    Liu Yanfei
    ADVANCES IN MECHATRONICS AND CONTROL ENGINEERING III, 2014, 678 : 468 - 472
  • [10] MobSTer: A model-based security testing framework for web applications
    Peroli, Michele
    De Meo, Federico
    Vigano, Luca
    Guardini, Davide
    SOFTWARE TESTING VERIFICATION & RELIABILITY, 2018, 28 (08):
12345