A Comprehensive Examination of Software Verification Methods: Combining Static and Dynamic Approaches
Authors
Anton Bukarev
Share
Annotation
The domain of software design and development confronts substantial impediments in efficaciously addressing the verification process. This investigation endeavors to devise a classification framework for software verification methodologies, facilitating the scrutiny of extant techniques and their corresponding merits and demerits within software applications. By examining and categorizing these methodologies, this research aspires to generate an exhaustive set of criteria and proposals for further progress in automated testing execution on cloud-based apparatuses. The article delves into three salient categories of software verification methods: empirical, formal, and dynamic, and expounds on their disparate degrees of automation, extending from manual to entirely automated approaches. Through this comprehensive assessment, the study aims to augment the continual refinement and optimization of software verification techniques in a progressively cloud-oriented computing
Keywords
Authors
Anton Bukarev
Share
References:
- Schütte J., Fedler R., Tetze D. ConDroid: targeted dynamic analysis of Android Applications. AINA’15 Proceedings of IEEE 26th international Conference on Advanced Information Networking and Applications, Gwangui, South Korea, March 24-27, 2015
- Kim T., Park J., Kulinda I., Jang Y. Concolic Testing Framework for Industrial Embedded Software. APSEC’14 Proceedings of the 2014 21st Asia-Pacific Software Engineering Conference, volume 2, Jeju, South Korea, December 01-04, 2014, pp. 7-10
- Gerasimov A.Y., Kruglov L.V., Ermakov M.K., Vartanov S.P. An approach of reachability confirmation for static analysis defects with help of dynamic symbolic execution. Trudy ISP RAN/Proc. ISP RAS, vol. 29, issue 5, 2017. pp. 111-134 (in Russian). DOI: 10.15514/ISPRAS-2017-29(5)-7
- Miller, C., Valasek, C.: A survey of remote automotive attack surfaces. Black Hat USA (2014)
- Huuck, R.: Technology transfer: Formal analysis, engineering, and business value. Sci. Comput. Program. 103 (2015) 3–12
- Mateo Tudela, F.; Bermejo Higuera, J.-R.; Bermejo Higuera, J.; Sicilia Montalvo, J.-A.; Argyros, M.I. On Combining Static, Dynamic and Interactive Analysis Security Testing Tools to Improve OWASP Top Ten Security Vulnerability Detection in Web Applications. Appl. Sci. 2020, 10, 9119.
- Barabanov, A.; Markov, A.; Tsirlov, V. Statistics of software vulnerability detection in certification testing. In International Conference Information Technologies in Business and Industry 2018; IOP Publishing: Tomsk, Russia, 2017
- Bermejo, J.R.; Bermejo, J.; Sicilia, J.A.; Cubo, J.; Nombela, J.J. Benchmarking Approach to Compare Web Applications Static Analysis Tools Detecting OWASP Top Ten Security Vulnerabilities. Comput. Mater. Contin. 2020, 64, 1555–1577.
- Nunes, P.; Medeiros, I.; Fonseca, J.C.; Neves, N.; Correia, M.; Vieira, M. Benchmarking Static Analysis Tools for Web Security. IEEE Trans. Reliab. 2018, 67, 1159–1175.
- Mohino, J.D.V.; Higuera, J.B.; Higuera, J.-R.B.; Montalvo, J.A.S.; Higuera, B.; Mohino, D.V.; Montalvo, J.A.S. The Application of a New Secure Software Development Life Cycle (S-SDLC) with Agile Methodologies. Electronics 2019, 8, 1218.
- Al-Amin, S.; Ajmeri, N.; Du, H.; Berglund, E.Z.; Singh, M.P. Toward effective adoption of secure software development practices. Simul. Model. Pr. Theory 2018, 85, 33–46.