Title :
The investigation of vulnerability test in application software
Author :
Sedaghat, Shahrzad ; Adibniya, Fazlollah ; Sarram, MehdiAgha
Author_Institution :
Inf. Technol. Eng., Yazd Univ., Yazd, Iran
Abstract :
Security challenges of application software that are about 70 percent of monthly discovered vulnerability of this kind are one of the most important concerns of managers. In this article, after the introduction of brief application software vulnerability, the author intends to investigate the issue of software vulnerability test from two points. This issue is divided in to two groups of tests, during the software development and after software implementation in terms of the time of application. In the first method, it is believed that making essential changes in software security necessitate changes in the methods of software production. To provide security in this method, code review can be performed via static analysis tools. In the second method software scanners can be used. Finally by comparison, the positive and negative points of these methods are demonstrated. It should be mentioned that our view is forward the general concepts and detailed issues need another opportunity to be investigated.
Keywords :
program diagnostics; program testing; security of data; application software; brief application software vulnerability; software development; software implementation; software scanners; software security; software vulnerability test; static analysis tools; Application software; Buffer overflow; Computer security; Impedance; Information security; Information technology; Logic programming; Logic testing; Software testing; XML; Scanner; application software security; static analysis tool; test; vulnerability;
Conference_Titel :
Current Trends in Information Technology (CTIT), 2009 International Conference on the
Conference_Location :
Dubai
Print_ISBN :
978-1-4244-5754-0
Electronic_ISBN :
978-1-4244-5756-4
DOI :
10.1109/CTIT.2009.5423119
