A Call for Mandatory Input Validation and Fuzz Testing
| dc.contributor.author | Køien, Geir Myrdahl | |
| dc.contributor.author | Øverlier, Lasse | |
| dc.date.accessioned | 2024-04-08T12:58:38Z | |
| dc.date.available | 2024-04-08T12:58:38Z | |
| dc.date.created | 2023-05-11T10:40:23Z | |
| dc.date.issued | 2023 | |
| dc.identifier.citation | Køien, G. M., & Øverlier, L. (2023). A Call for Mandatory Input Validation and Fuzz Testing. Wireless Personal Communications. | en_US |
| dc.identifier.issn | 0929-6212 | |
| dc.identifier.uri | https://hdl.handle.net/11250/3125333 | |
| dc.description.abstract | The on-going digitalization of our critical infrastructures is progressing fast. There is also a growing trend of serious and disrupting cyber-attacks. The digital services are often fragile, and with many weaknesses and vulnerabilities. This makes exploiting and attacking the services a little too easy. If the services verifies all inputs, many security threats will be avoided. Similarly, if one diligently tests the services with malformed inputs, one will uncover many security and software quality problems. In this paper we investigate “input validation” and “fuzz testing” as a means to improve security. The aim is not exhaustive coverage, but to provide indications of usefulness and to serve as a call for action. | en_US |
| dc.language.iso | eng | en_US |
| dc.rights | Navngivelse 4.0 Internasjonal | * |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/deed.no | * |
| dc.title | A Call for Mandatory Input Validation and Fuzz Testing | en_US |
| dc.type | Peer reviewed | en_US |
| dc.type | Journal article | en_US |
| dc.description.version | publishedVersion | en_US |
| dc.rights.holder | © The Author(s) 2023. | en_US |
| dc.source.pagenumber | 13 | en_US |
| dc.source.journal | Wireless Personal Communications | en_US |
| dc.identifier.doi | https://doi.org/10.1007/s11277-023-10431-2 | |
| dc.identifier.cristin | 2146884 | |
| cristin.ispublished | true | |
| cristin.fulltext | original | |
| cristin.qualitycode | 1 |
Tilhørende fil(er)
Denne innførselen finnes i følgende samling(er)
-
Institutt for mikrosystemer [525]
-
Publikasjoner fra CRIStin [3470]
Med mindre annet er angitt, så er denne innførselen lisensiert som Navngivelse 4.0 Internasjonal