The Power of Fuzz Testing to Reduce Security Vulnerabilities

May 25, 2010 • Podcast

By

Will Dormann and Julia H. Allen

In this podcast, Will Dormann urges listeners to subject their software to fuzz testing to help identify and eliminate security vulnerabilities.

Publisher

Software Engineering Institute

Subjects

Best Practices

Listen

Abstract

To help identify and eliminate security vulnerabilities, subject all software that you build and buy to fuzz testing.

About the Speaker

Will Dormann

Will Dormann is an SEI alumni employee.

Will Dormann has been a software vulnerability analyst with Carnegie Mellon Software Engineering Institute's CERT Coordination Center (CERT/CC) since 2004. His focus area includes web browser technologies, ActiveX, and fuzzing. Will has discovered thousands of vulnerabilities through the use of fuzzing tools and …

Julia H. Allen

Julia Allen is an SEI alumni employee.

Julia Allen is a principal researcher within the CERT® Division at the Software Engineering Institute (SEI), a unit of Carnegie Mellon University in Pittsburgh, PA. Allen’s areas of interest include operational resilience, security governance, and measurement and analysis. Prior to this technical assignment, …

Software Engineering Institute