摘要
基于网络应用软件对安全性需求的日益加强,提出将安全性测试增加到软件功能性测试之中的观点,并且给出对应用软件进行安全测试的对手模式,以及为快速高效实施对手模式进行软件分解的方法和对手模式的应用范围。基于对手模式给出一种应用软件系统的抗攻击定理,该理论从安全性角度导出了一种实用的估算网络应用软件寿命的方法。
The security of application software is more important in network days. A kind of adversary pattern to find out security bugs in a software is raised which can be used in all testing steps. We discuss the software decomposition ways and application of the adversary pattern, put forward an attack-proof theorem. It shows a method of computing average number of attack times before a software system having concealed bugs becomes invalid. We also give a new way to estimate the software's lifetime under various randomized attacks.
出处
《计算机科学》
CSCD
北大核心
2006年第9期266-269,共4页
Computer Science
基金
国家自然科学基金(60373066)。
关键词
安全性测试
攻击
对手模式
随机算法
软件寿命
Security testing, Attack, Adversary pattern, Randomized algorithm, Software's lifetime
