Abstract
Modern software systems are difficult to test due to
their distributed nature, and increased security
complicates testing even further. Our hypothesis is that
some security vulnerabilities are actually introduced due
to developers&psila; need to facilitate testing that
software requirements have been implemented correctly. If
these temporary security vulnerabilities are not removed
before the software is delivered, there is a great risk
that they may become fielded security vulnerabilities.In
this paper, we study the relationship between such
security vulnerabilities and developers' need to improve
the testability of an application to facilitate unit and
integration testing. We trace detected vulnerabilities to
characteristics of the software that made testing
difficult and therefore led to testability improvements.
We discuss how the need to increase testability may
relate to a form of developer usability, and what the
ways of dealing with the problem of security
vulnerabilities as a consequence of increasing
testability are. (11 refs.)
Original language | English |
---|---|
Title of host publication | 2nd International Conferences on Advances in Computer-Human Interactions, ACHI 2009 |
Place of Publication | Piscataway |
Publisher | IEEE Institute of Electrical and Electronic Engineers |
Pages | 289-294 |
ISBN (Electronic) | 978-0-7695-3529-6 |
ISBN (Print) | 978-1-4244-3351-3 |
DOIs | |
Publication status | Published - 2009 |
MoE publication type | A4 Article in a conference publication |
Event | 2nd International Conferences on Advances in Computer-Human Interactions, ACHI 2009 - Cancun, Mexico Duration: 1 Feb 2009 → 7 Feb 2009 |
Conference
Conference | 2nd International Conferences on Advances in Computer-Human Interactions, ACHI 2009 |
---|---|
Country/Territory | Mexico |
City | Cancun |
Period | 1/02/09 → 7/02/09 |