Site logo
Site logo
Site logo
Dawn Haynes - An Introduction to How to Break Software: Designing Attacks - 22 Nov. 2013 - 19:00 (UTC+01:00)

Positive tests are often crucial for confirming features, functionality, fixes and more. But negative tests often tell a different story. They can show off software's unplanned side, for example, by exposing emergent behaviors and creating scenarios for evaluating software robustness. Random guessing can certainly be used to expose the unexpected in software, but planning and designing "attacks" can be a more efficient and effective way to get value out of your negative testing allotment.

In this session, we'll get started with designing attacks by exploring the notion of fault models in software and systems. After illustrating how to perform the analysis to discover what vulnerabilities might exist, we'll break down the anatomy of an attack using a couple of common examples. An overview of several generic software attacks will be shared, along with a few security and web attacks. We'll finish up with some ideas and open discussion for creating custom attacks on your projects.

Site logo