
doi: 10.1109/msp.2005.3
Security bugs' hidden nature is why we need specific, focused application-security testing techniques, testing that defies the traditional model of verifying an application's specification and instead identifies the unspecified and insecure side-effects of "correct" application functionality. I examine application penetration testing - software testing that's specifically designed to hunt down security vulnerabilities
| selected citations These citations are derived from selected sources. This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically). | 41 | |
| popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network. | Top 10% | |
| influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically). | Top 10% | |
| impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network. | Top 10% |
