评估JDK安全测试的质量

Proceedings of the 8th ACM SIGSOFT International Workshop on Automated Software Testing Pub Date : 2017-09-04 DOI:10.1145/3121245.3121246

P. Krishnan, Jerome Loh, Rebecca O'Donoghue, L. Meinicke

{"title":"评估JDK安全测试的质量","authors":"P. Krishnan, Jerome Loh, Rebecca O'Donoghue, L. Meinicke","doi":"10.1145/3121245.3121246","DOIUrl":null,"url":null,"abstract":"In this position paper we describe how mutation testing can be used to evaluate the quality of test suites from a security viewpoint. Our focus is on measuring the quality of the test suite associated with the Java Development Kit (JDK) because it provides the core security properties for all applications. We describe the challenges associated with identifying security-specific mutation operators that are specific to the Java model and ensuring that our solution can be automated for large code-bases like the JDK.","PeriodicalId":107820,"journal":{"name":"Proceedings of the 8th ACM SIGSOFT International Workshop on Automated Software Testing","volume":"106 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-09-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Evaluating quality of security testing of the JDK\",\"authors\":\"P. Krishnan, Jerome Loh, Rebecca O'Donoghue, L. Meinicke\",\"doi\":\"10.1145/3121245.3121246\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this position paper we describe how mutation testing can be used to evaluate the quality of test suites from a security viewpoint. Our focus is on measuring the quality of the test suite associated with the Java Development Kit (JDK) because it provides the core security properties for all applications. We describe the challenges associated with identifying security-specific mutation operators that are specific to the Java model and ensuring that our solution can be automated for large code-bases like the JDK.\",\"PeriodicalId\":107820,\"journal\":{\"name\":\"Proceedings of the 8th ACM SIGSOFT International Workshop on Automated Software Testing\",\"volume\":\"106 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-09-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 8th ACM SIGSOFT International Workshop on Automated Software Testing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3121245.3121246\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 8th ACM SIGSOFT International Workshop on Automated Software Testing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3121245.3121246","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

在本文中，我们从安全性的角度描述了如何使用突变测试来评估测试套件的质量。我们的重点是度量与Java开发工具包(JDK)相关的测试套件的质量，因为它为所有应用程序提供了核心安全属性。我们描述了与识别特定于Java模型的安全特定的突变操作符相关的挑战，并确保我们的解决方案可以自动用于像JDK这样的大型代码库。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Evaluating quality of security testing of the JDK

In this position paper we describe how mutation testing can be used to evaluate the quality of test suites from a security viewpoint. Our focus is on measuring the quality of the test suite associated with the Java Development Kit (JDK) because it provides the core security properties for all applications. We describe the challenges associated with identifying security-specific mutation operators that are specific to the Java model and ensuring that our solution can be automated for large code-bases like the JDK.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 8th ACM SIGSOFT International Workshop on Automated Software Testing

自引率

0.00%

发文量