Exploring Software Security Test Generation Techniques: Challenges and Opportunities

Pub Date : 2021-06-03 DOI:10.46300/9109.2021.15.11

Mamdouh Alenezi, Mohammed Akour, H. Basit

{"title":"Exploring Software Security Test Generation Techniques: Challenges and Opportunities","authors":"Mamdouh Alenezi, Mohammed Akour, H. Basit","doi":"10.46300/9109.2021.15.11","DOIUrl":null,"url":null,"abstract":"Ensuring the security of the software has raised concerns from the research community which triggered numerous approaches that tend to eliminate it. The process of ensuring the security of software includes the introduction of processes in the Software Development Life Cycle where one of them is testing after the software is developed. Manually testing software for security is a labor-intensive task. Therefore, it is required to automate the process of testing by generating test cases by automated techniques. In this paper, we review various software security test case generation approaches and techniques. We try to explore and classify the most eminent techniques for test case generation. The techniques are summarized and presented briefly to covers all researches work that has been done in the targeted classification. Moreover, this paper aims to depict the sound of security in the current state of the art of test case generation. The findings are summarized and discussed where the opportunities and challenges are revealed narratively. Although the paper intends to provide a comprehensive view of the research in test case generation, there was a noticeable lack in the test case generation from the security perspectives","PeriodicalId":0,"journal":{"name":"","volume":null,"pages":null},"PeriodicalIF":0.0,"publicationDate":"2021-06-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.46300/9109.2021.15.11","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Ensuring the security of the software has raised concerns from the research community which triggered numerous approaches that tend to eliminate it. The process of ensuring the security of software includes the introduction of processes in the Software Development Life Cycle where one of them is testing after the software is developed. Manually testing software for security is a labor-intensive task. Therefore, it is required to automate the process of testing by generating test cases by automated techniques. In this paper, we review various software security test case generation approaches and techniques. We try to explore and classify the most eminent techniques for test case generation. The techniques are summarized and presented briefly to covers all researches work that has been done in the targeted classification. Moreover, this paper aims to depict the sound of security in the current state of the art of test case generation. The findings are summarized and discussed where the opportunities and challenges are revealed narratively. Although the paper intends to provide a comprehensive view of the research in test case generation, there was a noticeable lack in the test case generation from the security perspectives

查看原文

微信好友朋友圈 QQ好友复制链接

探索软件安全测试生成技术：挑战与机遇

确保软件的安全性已经引起了研究界的关注，这引发了许多倾向于消除它的方法。确保软件安全的过程包括在软件开发生命周期中引入过程，其中一个过程是在软件开发后进行测试。手动测试软件的安全性是一项劳动密集型任务。因此，需要通过自动化技术生成测试用例来自动化测试过程。在本文中，我们回顾了各种软件安全测试用例生成方法和技术。我们尝试探索和分类最杰出的测试用例生成技术。对这些技术进行了总结和简要介绍，以涵盖在目标分类方面所做的所有研究工作。此外，本文旨在描述当前测试用例生成技术状态下的安全性。对调查结果进行了总结和讨论，其中的机遇和挑战被叙述地揭示出来。尽管本文打算提供一个全面的测试用例生成研究的视图，但是从安全性的角度来看，在测试用例生成方面存在明显的不足

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助