Security bug

A security bug or security defect is a software bug that can be exploited to gain unauthorized access or privileges on a computer system. Security bugs introduce security vulnerabilities by compromising one or more of:

Security bugs need not be identified nor exploited to qualify as such and are assumed to be much more common than known vulnerabilities in almost any system.

Causes

Security bugs, like all other software bugs, stem from root causes that can generally be traced to either absent or inadequate:[2]

Taxonomy

Security bugs generally fall into a fairly small number of broad categories that include:[3]

Mitigation

See software security assurance.

gollark: <@306228181336195073> Er, do you want to trade that omen for my deipsisisisy one?
gollark: I'm scroll-locked.
gollark: Shame there aren't pink ones about.
gollark: <@204627302850494475> Is that an L or an I?
gollark: To AP other random omen hatchlings or not to AP them, that is the question.

See also

References

  1. "CWE/SANS TOP 25 Most Dangerous Software Errors". SANS. Retrieved 13 July 2012.
  2. "Software Quality and Software Security". 2008-11-02. Retrieved 2017-04-28.
  3. "Security vulnerability categories in major software systems". 2006-01-01. Retrieved 2017-04-28.

Further reading

This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.