000 -LEADER |
fixed length control field |
03103nam a2200217 4500 |
003 - CONTROL NUMBER IDENTIFIER |
control field |
APU |
005 - DATE AND TIME OF LATEST TRANSACTION |
control field |
20230625191011.0 |
008 - FIXED-LENGTH DATA ELEMENTS--GENERAL INFORMATION |
fixed length control field |
200227b2019 ||||| |||| 00| 0 eng d |
050 ## - LIBRARY OF CONGRESS CALL NUMBER |
Classification number |
PM-31-85 |
100 0# - MAIN ENTRY--PERSONAL NAME |
Personal name |
ALI FATHI ALI SAWEHLI (TP039437) |
9 (RLIN) |
45476 |
245 10 - TITLE STATEMENT |
Title |
IMPROVING SOFTWARE SECURTIY TESTING OF SOFTWARE DEVELOPMENT LIFE CYCLE (SDLC) FOR WEB-BASED APPLICATIONS BY PROVIDING A QUALITY VULNERABILITY ASSESSMENT SYSTEM (Web-Vs) / |
Statement of responsibility, etc |
ALI FATHI ALI SAWEHLI. |
260 ## - PUBLICATION, DISTRIBUTION, ETC. (IMPRINT) |
Place of publication, distribution, etc |
Kuala Lumpur : |
Name of publisher, distributor, etc |
Asia Pacific University, |
Date of publication, distribution, etc |
2019. |
300 ## - PHYSICAL DESCRIPTION |
Extent |
xv, 168 pages : |
Other physical details |
illustrations ; |
Dimensions |
30 cm. |
502 ## - DISSERTATION NOTE |
Dissertation note |
A thesis submitted in fulfilment of the requirements for the award of the degree of MSc. in Software Engineering (UCMF1808SE). |
520 ## - SUMMARY, ETC. |
Summary, etc |
Software security testing is a type of software testing that can be conducted during the software development life cycle (SDLC) for any software. It mainly aims to discover and find vulnerability and security flaws in given software. Therefore, there are various types of software security testing such as penetration testing, vulnerability assessment, audit testing, code review and more. Based on the gathered data through literature review and interviews, there are various issues and challenges that software testers are currently facing while conducting vulnerability assessment tasks for web applications in terms of portability, usability, compatibility, complexity, performance, accuracy, overall methodology and more. Also, there are different factors to these issues, such as inexperienced testers. Recently, most of the researchers suggested to study and address these issues in order to enable developers to develop a secure web application and protect them from external threats. Based on that, this dissertation disused and examined the issues and challenges in-depth in order to provide a solution that overcomes them. The solution came based on the software testers suggestions and feedback as they are going to use the proposed Web-Vs model, and it is called Web-Vs model. It basically consists of various stages that include planning & scoping phase, initial vulnerability scanning and analyzing phase, remediation & reporting phase and rescan phase. Also, this model provides a proposed system that works closely with Web-Vs Model. Besides, the interviewed software testers have evaluated the proposed Web-Vs model with the currently used model. Based on the analysis results, the Web-Vs model has shown a high outperformance when compared with the currently used models. Also, it has been justified that the proposed Web-Vs model can be considered as one of the efficient vulnerability assessment models and can be used as an alternative to other used models in software security testing for the web application. |
650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
Topical term or geographic name as entry element |
Computer software |
9 (RLIN) |
45477 |
General subdivision |
Development. |
650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
Topical term or geographic name as entry element |
System engineering. |
9 (RLIN) |
46668 |
700 0# - ADDED ENTRY--PERSONAL NAME |
Personal name |
Dr. Julia binti Juremi |
Relator term |
Supervisor. |
-- |
47675 |
856 40 - ELECTRONIC LOCATION AND ACCESS |
Uniform Resource Identifier |
https://cas.apiit.edu.my/cas/login?service=https://library.apu.edu.my/apres/ |
Link text |
Available in APres |
Public note |
- Requires login to view full text. |
942 ## - ADDED ENTRY ELEMENTS (KOHA) |
Source of classification or shelving scheme |
|
Koha item type |
Masters Theses |