A security testing mechanism for detecting attacks in distributed software applications using blockchain

Algarni, Abdullah; Attaallah, Abdulaziz; Eassa, Fathi; Khemakhem, Maher; Jambi, Kamal; Aljihani, Hosam; Almarhabi, Khalid Ali; Albalwy, Faisal

doi:10.1371/journal.pone.0280038

Cited by 2 publications

(5 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The increasing demand has led to a rapid increase in the number and complexity of distributed software applications. However, such applications are more vulnerable to different types of attacks due to their distributed nature [74], [75].…”

Section: The Need For Software Securitymentioning

confidence: 99%

“…Therefore, the authors suggested a need for a stronger focus on the tasks and activities surrounding coding. On their part, the authors in [75] have developed a new mechanism that uses blockchain technology [88] to devise a security testing mechanism to detect attacks on distributed software applications. This technique can detect several categories of attacks, such as denial-of-service attacks, malware and others.…”

Section: Techniques and Approaches To Software Securitymentioning

confidence: 99%

“…There is no accepted methodology for security in the literature [75] Detects denial-of-service attacks and other malwares in blockchain…”

Section: More People May Gather Knowledge Of Existing Vulnerabilities...mentioning

confidence: 99%

“…Unfortunately, there is no evidence in the literature that software product managers have used them in practice. The authors in [75] have also highlighted that the detection and addressing of attacks is an open issue concerning distributed software applications. There is therefore need for organizations to follow the practices that are vital to SAP verification [198].…”

Section: Research Gapsmentioning

confidence: 99%

See 3 more Smart Citations

Security risks in the software development lifecycle: A review

Odera¹,

Otieno²,

Ounza³

2023

World J. Adv. Eng. Technol. Sci.

View full text Add to dashboard Cite

Software security is one of the most critical concerns in modern software development, especially in safety-critical systems whose failure can lead to environmental damage, substantial property, or loss of human lives. In addition, flawed applications have been shown to exhibit unpredictable behavior while software products with numerous vulnerabilities present attack vectors that can be exploited by attackers. To address some of these problems, vulnerability prediction has been deployed for early detection of security risks in the software development lifecycle (SDLC). This can potentially facilitate decision making during the SDLC, resulting in the production of more secure software. Prioritizing security during SDLC permits developers and stakeholders to identify and resolve possible security concerns early on in the process. The aim of this paper is therefore to offer some in-depth review of software systems security issues. In addition, the various measures that have been put in place to mitigate security issues during SDLC are discussed.

show abstract

Section: The Need For Software Securitymentioning

confidence: 99%

Section: Techniques and Approaches To Software Securitymentioning

confidence: 99%

“…There is no accepted methodology for security in the literature [75] Detects denial-of-service attacks and other malwares in blockchain…”

Section: More People May Gather Knowledge Of Existing Vulnerabilities...mentioning

confidence: 99%

Section: Research Gapsmentioning

confidence: 99%

See 2 more Smart Citations

Security risks in the software development lifecycle: A review

Odera¹,

Otieno²,

Ounza³

2023

World J. Adv. Eng. Technol. Sci.

View full text Add to dashboard Cite

show abstract

“…Aims to identify vulnerabilities and weaknesses in software systems. Includes techniques such as penetration testing, vulnerability scanning, code reviews, and security-focused testing methodologies [162]. By uncovering vulnerabilities, organizations can address them before deploying the software.…”

Section: Security Testingmentioning

confidence: 99%

Theory and practice in secure software development lifecycle: A comprehensive survey

Otieno¹,

Odera²,

Ounza³

2023

World J. Adv. Res. Rev.

View full text Add to dashboard Cite

Software development security refers to the practice of integrating security measures and considerations throughout the software development lifecycle to ensure the confidentiality, integrity, and availability of software systems. It involves identifying, mitigating, and eliminating security vulnerabilities and threats that could be exploited by attackers. The goal of this paper is to survey the various concepts and methodologies directed towards software security, and the identification of any missing gaps. Based on the findings, it is noted that the development of secure software requires a proactive and comprehensive approach. It begins with establishing secure design principles and incorporating security requirements from the initial stages of development. Here, secure coding practices, such as input validation, output encoding, and secure authentication and authorization mechanisms, are employed to prevent common security vulnerabilities. In addition, regular security testing, including penetration testing and vulnerability scanning, helps identify and address potential weaknesses in the software. Normally, code reviews and security audits are conducted to ensure adherence to secure coding practices and identify any security flaws. It is important that security training and awareness programs be provided to developers and other stakeholders to foster a security-conscious culture. To minimize potential vulnerabilities, secure configuration management, which involves properly configuring servers, networks, and dependencies may be utilized. On the other hand, regular updates and patching are essential to address known security vulnerabilities in software components. To guide their software development security practices, organizations may follow established security standards and frameworks such as ISO 27001 or NIST Cybersecurity Framework. By prioritizing software development security, organizations can protect sensitive data, prevent unauthorized access, and mitigate the risk of security breaches and incidents. In the long run, this helps build trust with users and stakeholders, enhances the reputation of the software, and reduces the potential impact of security incidents on the organization.

show abstract

A security testing mechanism for detecting attacks in distributed software applications using blockchain

Cited by 2 publications

References 18 publications

Security risks in the software development lifecycle: A review

Security risks in the software development lifecycle: A review

Theory and practice in secure software development lifecycle: A comprehensive survey

Contact Info

Product

Resources

About