We propose a framework for designing a security tool that can take advantages from current approaches while increasing precision, scalability and debuggability. This could enable software developers to conduct comprehensive security testing automatically. The approaches we utilise are static, dynamic and taint analysis along with fuzzing. The rationale behind this is that the complexity of today’s applications makes the discovery of their vulnerabilities difficult using a single approach. Therefore, a combination of them is what is needed to move towards efficient security checking.
CITATION STYLE
Aloteibi, S., & Stajano, F. (2014). On the value of hybrid security testing. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7061, pp. 207–213). Springer Verlag. https://doi.org/10.1007/978-3-662-45921-8_30
Mendeley helps you to discover research relevant for your work.