| Paul E. Black 2006-02-23, 7:01 pm |
| We hereby announce our on-line Software Assurance Reference Dataset (SRD).
It is a repository of test cases containing software security weaknesses,
idiosyncrasies, flaws, and faults. Anyone can browse, search, and
download test cases. It is available at
http://samate.nist.gov/SRD/
In some cases, the corrected version of a test case is also available.
Most are small examples, but some are taken from large applications.
They are mostly C or C++ source code. In the future, higher level
models, e.g. in UML or OASIS, and executables will be added. The SRD
now has more than 1,400 test cases, and many more will be added.
The SRD is rapidly evolving, both in content and user interface. If
you have suggestions for features, presentation, or usability, please
let us know.
People are invited to register to submit test cases or comment on
them. To submit test cases, please follow the instructions on the web
page.
This dataset was created and is maintained as part of the SAMATE project.
Sincerely,
-paul-
--
Paul E. Black (p.black@acm.org) 100 Bureau Drive, Stop 8970
paul.black@nist.gov Gaithersburg, Maryland 20899-8970
voice: +1 301 975-4794 fax: +1 301 926-3696
http://hissa.nist.gov/~black/ KC7PKT
|