Testing for Software Security

[presentation]

Herbert Thompson and James Whittaker, Florida Institute of Technology

STARWEST 2001 - Software Testing Conference

Summary:

Software can be correct without being secure. Therefore we must be vigilant in assessing the security implications of software behavior instead of being focused on the search for specification violations. If we want to include security problems in our testing periscope, we must consider the malicious use of functionality that might be possible outside normal use of the product. The goal of this presentation is to challenge current techniques by making the testing process more attuned to, and aggressive toward, security holes.

Upcoming Events

Apr 28	STAREAST Software Testing Conference in Orlando & Online
Jun 02	Agile + DevOps West The Latest in Agile and DevOps
Sep 22	STARWEST Software Testing Conference in Anaheim & Online

Recommended Web Seminars

On Demand	Building Confidence in Your Automation
On Demand	Leveraging Open Source Tools for DevSecOps
On Demand	Five Reasons Why Agile Isn't Working
On Demand	Building a Stellar Team
On Demand	Agile Transformation Best Practices

See All

Featured Resources

DevOps Continuous Delivery | TechWell

Open Source Testing Tools eGuide | TechWell

DevSecOps eGuide | TechWell

AI and the Future of Testing eGuide | TechWell

Testing in DevOps eGuide | TechWell

Visit Our Other Communities

Bringing you today’s best agile ideas and thought-leaders with how-to advice on the latest agile development & methodology practices.

The home for software testing and QA professionals—practical advice on test automation, test management, test techniques, and more.