Title :
Software penetration testing
Author :
Arkin, Brad ; Stender, Scott ; Mcgraw, Gary
Abstract :
Quality assurance and testing organizations are tasked with the broad objective of assuring that a software application fulfills its functional business requirements. Such testing most often involves running a series of dynamic functional tests to ensure proper implementation of the application´s features. However, because security is not a feature or even a set of features, security testing doesn´t directly fit into this paradigm
Keywords :
program testing; business requirements; quality assurance; software penetration testing; Application software; Automatic testing; Computer bugs; Computer security; Life testing; Privacy; Programming; Risk analysis; Software testing; System testing; penetration testing; security testing; software development life cycle;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2005.23
