Security bug

A security bug or security defect is a software bug that can be exploited to gain unauthorized access or privileges on a computer system. Security bugs introduce security vulnerabilities by compromising one or more of:

Security bugs need not be identified, surfaced nor exploited to qualify as such.

Causes

Security bugs, like all other software bugs, stem from root causes that can generally be traced to either absent or inadequate:

Taxonomy

Security bugs generally fall into a fairly small number of broad categories that include:

Mitigation

See Software Security Assurance.

See also

References

This article is issued from Wikipedia - version of the Sunday, September 28, 2014. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.