Publication
Automated Reusable Tests for Mitigating Secure Pattern Interpretation Errors
| dc.contributor.author | Cunha, Carlos | |
| dc.contributor.author | Pombo, Nuno | |
| dc.date.accessioned | 2024-05-06T10:23:57Z | |
| dc.date.available | 2024-05-06T10:23:57Z | |
| dc.date.issued | 2023 | |
| dc.description.abstract | The importance of software security has increased along with the number and severity of incidents in recent years. Security is a multidisciplinary aspect of the software development lifecycle, operation, and user utilization. Being a complex and specialized area of software engineering, it is often sidestepped in software development methodologies and processes. We address software security at the design level by adopting design patterns that encapsulate reusable solutions for recurring security problems. Design patterns can help development teams implement the best-proven solutions for a specialized problem domain. However, from the analysis of three secure pattern implementations by 70 junior programmers, we detected several structural errors resulting from their interpretation. We propose reusable unit testing test cases based on annotations to avoid secure pattern interpretation errors and provide an example for one popular secure pattern. Providing these test cases to the same group of programmers, they implemented the pattern without errors. The reason is annotations build a framework that disciplines programmers to incorporate secure patterns in their applications and ensure automatic testing. | pt_PT |
| dc.description.version | info:eu-repo/semantics/publishedVersion | pt_PT |
| dc.identifier.doi | 10.1109/ACCESS.2023.3279823 | pt_PT |
| dc.identifier.uri | http://hdl.handle.net/10400.19/8370 | |
| dc.language.iso | eng | pt_PT |
| dc.relation | FCT Grant Number: UIDB/EEA/50008/2020 | pt_PT |
| dc.subject | Security | pt_PT |
| dc.subject | Software reliability | pt_PT |
| dc.subject | Software testing | pt_PT |
| dc.subject | Measurement | pt_PT |
| dc.subject | Computer architecture | pt_PT |
| dc.subject | Codes | pt_PT |
| dc.title | Automated Reusable Tests for Mitigating Secure Pattern Interpretation Errors | pt_PT |
| dc.type | journal article | |
| dspace.entity.type | Publication | |
| oaire.citation.endPage | 1 | pt_PT |
| oaire.citation.startPage | 1 | pt_PT |
| oaire.citation.title | IEEE Access | pt_PT |
| person.familyName | Cunha | |
| person.familyName | Coelho Costa Pombo | |
| person.givenName | Carlos | |
| person.givenName | Nuno Gonçalo | |
| person.identifier | 2081924 | |
| person.identifier.ciencia-id | D71F-FC65-1F07 | |
| person.identifier.ciencia-id | 0F16-A18D-96BA | |
| person.identifier.orcid | 0000-0002-2754-5401 | |
| person.identifier.orcid | 0000-0001-7797-8849 | |
| person.identifier.scopus-author-id | 39361170900 | |
| rcaap.rights | openAccess | pt_PT |
| rcaap.type | article | pt_PT |
| relation.isAuthorOfPublication | 384f50cd-9e87-40bd-b610-58008e05bec1 | |
| relation.isAuthorOfPublication | 1d798b22-8026-45ff-b667-7303f1eba5c3 | |
| relation.isAuthorOfPublication.latestForDiscovery | 384f50cd-9e87-40bd-b610-58008e05bec1 |
Files
Original bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- Automated_Reusable_Tests_for_Mitigating_Secure_Pattern_Interpretation_Errors.pdf
- Size:
- 1.56 MB
- Format:
- Adobe Portable Document Format
License bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- license.txt
- Size:
- 1.79 KB
- Format:
- Item-specific license agreed upon to submission
- Description: