Benutzer: Gast  Login
Titel:

Better Safe Than Sorry! Automated Identification of Functionality-Breaking Security-Configuration Rules

Dokumenttyp:
Konferenzbeitrag
Art des Konferenzbeitrags:
Textbeitrag / Aufsatz
Autor(en):
Stöckle, Patrick; Sammereier, Michael; Grobauer, Bernd; Pretschner, Alexander
Seitenangaben Beitrag:
10
Abstract:
Insecure default values in software settings can be exploited by attackers to compromise the system that runs the software. As a countermeasure, there exist security-configuration guides specifying in detail which values are secure. However, most administrators still refrain from hardening existing systems because the system functionality is feared to deteriorate if secure settings are applied. To foster the application of security-configuration guides, it is necessary to identify those rules...     »
Stichworte:
Software Security, Configuration Management, Software Testing
Kongress- / Buchtitel:
ACM/IEEE International Conference on Automation of Software Test (AST)
Datum der Konferenz:
15.-16.05.2023
Jahr:
2023
Serientitel:
AST '23
Reviewed:
ja
Sprache:
en
Erscheinungsform:
WWW
WWW:
Preprint on Arxiv
 BibTeX