Testing for IT Security: a Guided Search Pattern for Exploitable Vulnerability Classes

Neubaum A, Al Sardy L, Spisländer M, Saglietti F, Biener Y (2021)

Publication Language: English

Publication Type: Conference contribution

Publication year: 2021

Publisher: Springer

Series: Lecture Notes in Computer Science

Book Volume: 12853

DOI: 10.1007/978-3-030-83906-2_8

Abstract

This article presents a generic structured approach supporting the detection of exploitable software vulnerabilities of given type. Its applicability is illustrated for two weakness types: buffer overflowing and race conditions.

Authors with CRIS profile

Andreas Neubaum Lehrstuhl für Informatik 11 (Software-Engineering) Loui Al Sardy Lehrstuhl für Informatik 11 (Software-Engineering) Marc Spisländer Lehrstuhl für Informatik 11 (Software-Engineering) Francesca Saglietti Lehrstuhl für Informatik 11 (Software-Engineering)

Related research project(s)

Test Patterns zur Erkennung von Softwareschwachstellen (SMARTEST2-FAU-SWE) SMARTEST2: Evaluierung von Verfahren zum Testen der Informationssicherheit in der nuklearen Leittechnik durch smarte Testfallgenerierung 2 July 1, 2020 - June 30, 2023

How to cite

APA:

Neubaum, A., Al Sardy, L., Spisländer, M., Saglietti, F., & Biener, Y. (2021). Testing for IT Security: a Guided Search Pattern for Exploitable Vulnerability Classes. In Proceedings of the SAFECOMP 2021 Workshop on Dependable Smart Embedded Cyber-Physical Systems and Systems-of-Systems (DECSoS 2021). Springer.

MLA:

Neubaum, Andreas, et al. "Testing for IT Security: a Guided Search Pattern for Exploitable Vulnerability Classes." Proceedings of the SAFECOMP 2021 Workshop on Dependable Smart Embedded Cyber-Physical Systems and Systems-of-Systems (DECSoS 2021) Springer, 2021.

BibTeX: Download