Learning from Software Security Testing

  title={Learning from Software Security Testing},
  author={Inger Anne T\ondel and Martin Gilje Jaatun and Jostein Jensen},
  journal={2008 IEEE International Conference on Software Testing Verification and Validation Workshop},
Software security testing tools and methodologies are presently abundant, and the question no longer seems to be "if to test" for security, but rather "where and when to test" and "then what?". In this paper we present a review of security testing literature, and propose a software security testing scheme that exploits an intra-organisational repository of discovered vulnerabilities that closes the loop after the testing of one application is complete, providing useful input to the next… CONTINUE READING

From This Paper

Figures, tables, and topics from this paper.
7 Citations
34 References
Similar Papers


Publications referenced by this paper.
Showing 1-10 of 34 references

Hunting Security Bugs

  • T. Gallagher, L. Landauer, B. Jeffries
  • Microsoft Press
  • 2006
Highly Influential
3 Excerpts

How to Break Software Security

  • J. A. Whittaker, H. H. Thompson
  • Addison-Wesley
  • 2003
Highly Influential
5 Excerpts

Secu - rity Requirements for the Rest of Us : A Survey

  • M. G. Jaatun I. A. Tøndel, P. H. Meland
  • IEEE Software
  • 2008

and P

  • I. A. Tøndel, M. G. Jaatun
  • H. Meland, “Security Requirements for the Rest of…
  • 2008
3 Excerpts

Similar Papers

Loading similar papers…