TY - JOUR T1 - Susceptibility matrix: a new aid to software auditing JF - Security Privacy, IEEE Y1 - 2004 A1 - Jiwnani,K. A1 - Zelkowitz, Marvin V KW - approach; KW - auditing; KW - data; KW - matrix; KW - of KW - program KW - Security KW - software KW - susceptibility KW - taxonomy-based KW - testing; KW - vulnerabilities; AB - Testing for security is lengthy, complex, and costly, so focusing test efforts in areas that have the greatest number of security vulnerabilities is essential. This article describes a taxonomy-based approach that gives an insight into the distribution of vulnerabilities in a system. VL - 2 SN - 1540-7993 CP - 2 M3 - 10.1109/MSECP.2004.1281240 ER -