| 软件安全性测试方法与工具 |
| |
| 引用本文: | 施寅生,邓世伟,谷天阳.软件安全性测试方法与工具[J].计算机工程与设计,2008,29(1):27-30. |
| |
| 作者姓名: | 施寅生 邓世伟 谷天阳 |
| |
| 作者单位: | 北京系统工程研究所,北京,100101 |
| |
| 摘 要: | 软件的应用越来越广泛,规模和复杂度不断提高,软件中的安全缺陷与漏洞也在不断增多,软件安全性问题日益突出.软件安全性测试是保证软件安全性、降低软件安全风险的重要手段.论述了软件安全性测试的特点、内容,重点研究了国内外软件安全性测试的主要方法与工具,分析了各种方法的优缺点与适用范围,提出了一种安全性测试工具的分类方法,总结了当前研究工作并指出了未来软件安全性测试技术的研究重点与发展方向.
|
| 关 键 词: | 安全性测试 安全功能测试 安全漏洞测试 语法测试 模糊测试 |
| 文章编号: | 1000-7024(2008)01-0027-04 |
| 收稿时间: | 2007-03-02 |
| 修稿时间: | 2007年3月2日 |
Software security testing methods and tools |
| |
| SHI Yin-sheng,DENG Shi-wei,GU Tian-yang.Software security testing methods and tools[J].Computer Engineering and Design,2008,29(1):27-30. |
| |
| Authors: | SHI Yin-sheng DENG Shi-wei GU Tian-yang |
| |
| Abstract: | Software applications have become wider and the size and complexity has been ever-increasing. Security flaws and vulnerabilities in the software are growing. Software security problems have become increasingly prominent. Software security testing is an important means to ensure software security and decrease security risks. The main features and content of software security testing is discussed, and the major methods and tools of domestic and foreign software security testing are investigated the advantages and disadvantages of various methods and the scope of application are analyzed, a classification of security testing tools is presented. In conclusion, the present study is summarized and future focus and development directions of software security testing technology are pointed out |
| |
| Keywords: | security testing security functional testing security vulnerability testing syntax testing fuzz testing |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
