Projets par an
Résumé
Mutation analysis forms a popular software analysis technique that has been demonstrated to be useful in supporting multiple software engineering activities. Yet, the use of mutation analysis in tackling security issues has received little attention. In view of this, we design security aware mutation operators to support mutation analysis. Using a known set of common security vulnerability patterns, we introduce 15 security-aware mutation operators for Java. We then implement them in the PIT mutation engine and evaluate them. Our preliminary results demonstrate that standard PIT operators are unlikely to introduce vulnerabilities similar to ours. We also show that our security-aware mutation operators are indeed applicable and prevalent on open source projects, providing evidence that mutation analysis can support security testing activities.
langue originale | Anglais |
---|---|
titre | Proceedings - 10th IEEE International Conference on Software Testing, Verification and Validation Workshops, ICSTW 2017 |
Sous-titre | Mutation 2017 |
Editeur | IEEE |
Pages | 97-102 |
Nombre de pages | 6 |
ISBN (Electronique) | 9781509066766 |
Les DOIs | |
Etat de la publication | Publié - 13 mars 2017 |
Evénement | 12th International Workshop on Mutation Analysis (Mutation 2017) - Tokyo, Japon Durée: 13 mars 2017 → 13 mars 2017 Numéro de conférence: 12 https://sites.google.com/site/mutation2017/ |
Série de publications
Nom | Proceedings - 10th IEEE International Conference on Software Testing, Verification and Validation Workshops, ICSTW 2017 |
---|
Comité scientifique
Comité scientifique | 12th International Workshop on Mutation Analysis (Mutation 2017) |
---|---|
Titre abrégé | Mutation 2017 |
Pays/Territoire | Japon |
La ville | Tokyo |
période | 13/03/17 → 13/03/17 |
Adresse Internet |
Empreinte digitale
Examiner les sujets de recherche de « Towards Security-aware Mutation Testing ». Ensemble, ils forment une empreinte digitale unique.Projets
- 1 Terminé
-
Thesis-X-Devroey: Behavioural Model Based Testing of Software Product Lines
Devroey, X. (Chercheur), Heymans, P. (Co-investigateur), Schobbens, P. Y. (Co-investigateur) & Perrouin, G. (Chercheur)
1/09/11 → 30/08/17
Projet: Projet de thèse