The investigation of vulnerability test in application software

摘要

Security challenges of application software that are about 70 percent of monthly discovered vulnerability of this kind are one of the most important concerns of managers. In this article, after the introduction of brief application software vulnerability, the author intends to investigate the issue of software vulnerability test from two points. This issue is divided in to two groups of tests, during the software development and after software implementation in terms of the time of application. In the first method, it is believed that making essential changes in software security necessitate changes in the methods of software production. To provide security in this method, code review can be performed via static analysis tools. In the second method software scanners can be used. Finally by comparison, the positive and negative points of these methods are demonstrated. It should be mentioned that our view is forward the general concepts and detailed issues need another opportunity to be investigated.