Using Evolutionary Algorithms to Understand and Secure Web/Enterprise Systems

What security-related mistakes do software developers make and why do they make them? The answer to this will assist in forming a much-needed theoretical framework for the field of security testing, which identifies threats and measures vulnerabilities in software applications. The EU-funded EAST project will design new techniques that can be used to automatically generate test cases for large web/enterprise systems and that can find common types of security threats. Specifically, the tools and techniques developed in the EAST project will assist in studying and broadening our understanding of what kinds of security-related mistakes developers make in practice. Ultimately, it will contribute to software engineering, evolutionary computation and computer security, especially in developing breakthroughs in investigating the so-called oracle problem, which determines whether a test has passed or failed.