插图软件安全性依然是热点话题。
软件安全的实践者们已经在努力跨越这种心态。
Software security practitioners have struggled to get past this mindset.
将成微软提高软件安全的救世主?
软件安全测试与其他类型的测试有何不同?
How is Security Testing Different from Other Types of Software Testing?
确实有事实证明floss能比具有专利权的软件安全。
There's certainly evidence that FLOSS can be more secure than proprietary software.
我正在考虑开发一个软件安全存储服务器上的文件。
I am considering developing a software for safely storing files on a server.
大部分软件安全性的讨论都集中在应用程序本身或其中包含的数据上。
Most discussions of software security concentrate on the applications themselves or the data they contain.
剑桥大学软件安全工程师罗斯·安德逊称这样运送产品“蠢的要命”。
Ross Anderson, a professor of security engineering at Cambridge University, calls it "exceptionally stupid" to ship such a product in this way.
不幸的是,在解决软件安全性方面,传统的测试方法和思路,距离要求相差甚远。
Unfortunately, when it comes to addressing software security, traditional testing approaches, and the traditional testing mindset, fall far short of what is required.
利用MDA方法进行软件安全属性的建模,降低后期开发的风险与成本。
It realizes software security property modeling with the method of MDA, and reduces risk and cost of later development period.
如果用于正当目的,这个工具能够提供揭示软件安全漏洞的强大方法并协助修补漏洞。
In the right hands, this tool can offer a very powerful means of uncovering security vulnerabilities in software and assisting in their repair.
作者接下来提出了关于违反安全的一个例子,使用传统的推理把软件安全比作成家庭安全。
The authors then offer an example of security violation, using a traditional analogy that likens software security to home security.
转换IT通过防止篡改和黑客攻击应用软件中的目标钥匙来提高软件安全保护。
TransformIT enhances software security by preventing tampering and hacking attacks that target keys used within software applications.
所以,如何提前检测出软件系统中存在的漏洞,是现在软件安全领域急需解决的问题。
So, how early to detect loopholes in the software system, the software security field is now an urgent need to solve problems.
我的目的是通过阐明公共术语并且提供一些典型的安全性使用的现实实例来说明什么是软件安全性。
My intention is to demonstrate what software security is by demystifying common terminology and providing realistic examples of typical security exploits.
这个列表是SANS学院、 MITRE以及“美国和欧洲很多顶级软件安全专家”共同合作的成果。
The list is the result of collaboration between the SANS Institute, MITRE, and “ many top software security experts in the US and Europe”.
漏洞是软件安全的一个严重威胁,如何检测软件中存在的漏洞对提高其安全性具有重要的意义。
Vulnerability is a serious menace to software security, so vulnerability detection has important meanings for improving software security.
IDA是世界上最敏捷和多功能的反编译工具,被众多软件安全专家所熟知的交互的反汇编工具。
IDA is the Interactive disassembler: the world's smartest and most feature-full disassembler, which many software security specialists are familiar with.
为了解决测试团队这方面知识的缺乏,贯穿测试和模糊测试这样的工具逐渐流行起来,用作软件安全性的开发。
To combat this lack of knowledge within the test organization, tools such as penetration test and fuzz test have become popular weapons in the ongoing fight against software security exploitation.
软件的安全性测试是软件安全和软件质量的重要保障,也逐渐成为软件生命周期中必不可少的一环。
Software security testing is an important guarantee of software safety and quality, and is gradually becoming an inevitable step in software development life circle.
一个应用软件安全情况的调查问卷表,是一个详细的工作表,可以帮助解析出架下的安全性情况的关键信息。
An application security posture questionnaire, a detailed worksheet that helps extract key information about the security posture of off-the-shelf software.
谁会在94年和一个不知名的俄罗斯软件安全公司做生意?所以我们一开始就从欧洲的公司、从个人、从小型公司接订单。
So we started to get requests from European companies from individuals, from small companies, because who was going to work with an unknown Russian software security company, in 94?
这样,能够识别签名的工具就可以有选择地为您授予软件安全特权,这是其他文件做不到的,它还可以检测代码是否被篡改过。
Tools that recognize your signature can then optionally grant your software security privileges it wouldn't otherwise have, and detect if the code has been tampered with.
通过分析软件安全领域存在的问题,以软件工程思想为基础,运用系统安全工程的原则,提出一个软件安全性保障框架。
The software security assurance framework used the principle of system safety engineering and based on software engineering thinking.
根据这个站点的分类,任何一个漏洞”门“都可以归类到下面这个”7+1“个的致命”界“,下面的些”界“的先后顺序是按照影响软件安全的程度从高到低排序的。
According to the site, vulnerability phyla are classified into "seven plus one" pernicious kingdoms presented in the order of importance to software security
他用的安全软件是自己编的。
拥护者认为开放源代码软件更安全,购买价格及维修成本也更为低廉,并且更容易定制。
Supporters say open source software is more secure, cheaper to buy and maintain and easier to customize.
用来引导车辆的软件可能不够安全。
The software that is used to direct the cars may not be safe enough.
你在为运行时性能权衡编程效率、安全、软件可靠性而做出的决定是否是一个根本错误?
Wasn't your decision to trade off programmer efficiency, security, and software reliability for run time performance a fundamental mistake?
你在为运行时性能权衡编程效率、安全、软件可靠性而做出的决定是否是一个根本错误?
Wasn't your decision to trade off programmer efficiency, security, and software reliability for run time performance a fundamental mistake?
应用推荐