CL
Uploaded byCassey Low
PPTX, PDF322 views

Infocomm Security: Software Bugs

The document discusses software bugs, which are errors in programming that can be difficult to detect and fix, often requiring significant time and effort. It highlights different types of bugs, their potential consequences, and their usage in cyber warfare, while emphasizing the need for preventive measures and the importance of analyzing bugs for improving programming skills. Additionally, it notes the substantial economic costs associated with bugs and presents several historical examples of significant vulnerabilities.

Embed presentation

Downloaded 23 times
SOFTWARE BUGS PRESENTED BY CASSEY LOW
WHAT ARE BUGS? • Error or fault in programming codes in the software made in the development stage that the programmer missed • May require high-levelled programming skills to find bugs and a fix for it especially if there are millions of lines of codes
DEBUGGING • To debug is to find/fix bugs. • Often more time and effort is spent on finding & fixing bugs than writing new codes. • The use of a debugger makes debugging easier & less time wasting • Some bugs come into effect only when certain conditions are triggered, so it might be missed in testing
EFFECT OF BUGS • Some bugs may go undetected for a long time • Programs may freeze or crash • Security problems may enable malicious users such as hackers to perform privilege escalation
TYPE OF BUGS • Logic bugs: logic errors in program code (eg. infinite loops), usually harder to notice when there are many lines of codes  some may go unnoticed • Syntax bugs: using wrong operator, many programming software (eg. Netbeans, Eclipse) checks & shows the error made • Arithmetic bugs, resource bugs, teamworking bugs, interfacing bugs, performance bugs, multi-threading programming bugs
WHAT CAN YOU DO WITH A BUG? • They can be used in cyber warfare as weapons In May 2014, US indicted 5 members of Chinese army for stealing data from American companies (eg. Westinghouse & Alcoa) • Use it for zero-day • Saettlal citk sfor profit • Fix it and take preventive measures
WHAT WOULD HAPPEN IF IT ENDS UP IN THE HANDS OF… • Malicious users  bugs may be sold to bug brokers, Cybercriminals and Cyberterrorists  lead to zero-day attacks • Software makers  fix it  release patch for fixing the bug • Software security companies (eg. Exodus Intelligence)  sell bugs to their clients which range from software makers to government organisations
EXAMPLES OF BUGS & PROBLEMS CAUSED • Stuxnet (2009, the first true cyber weapon), Heartbleed (recent - 2014), Y2K (Year 2000 problem) • Serious problems can arise depending on how the bugs are exploited. • In the medical industry, bugs in the code controlling a therapy machine caused some patients deaths (1980) • Bugs cost US economy an estimated $59 billion yearly
IN A NUTSHELL • Bugs can be useful depending on how they are used. • Bugs help us to find new ways to prevent more bugs from being created • The more bugs we analyse, the more we can learn & improve our programming skills.
THIS PRESENTATION IS BASED ON… • Grossman, L., 2014. The Code War. Time Magazine, p. 16. • Wikipedia, 2012. Software bug - Wikipedia, the free encyclopedia. [Online] Available at: http://en.wikipedia.org/wiki/Software_bug#Well-known_bugs
THANK YOU! Lets learn from bugs! 

More Related Content

PDF
Children rebel
byAzeem Vasanwala
 
PPTX
Code - Fu: Defensive Programming
bySovTech (Scrums.com)
 
PDF
3 florin coada - sast in the days of dev ops
byIevgenii Katsan
 
PPTX
Eirtight writing secure code
byKieran Dundon
 
PDF
Florin Coada: MOBILE TESTING - A SIMPLE SOLUTION TO YOUR MOBILE SECURITY TESTING
byIevgenii Katsan
 
PDF
Antivirus support
byPeter james
 
KEY
Edu camp presentation 13/4/12
byAzeem Vasanwala
 
PPTX
Spring Callout 2011
byAzlan Ismail
 
Children rebel
byAzeem Vasanwala
 
Code - Fu: Defensive Programming
bySovTech (Scrums.com)
 
3 florin coada - sast in the days of dev ops
byIevgenii Katsan
 
Eirtight writing secure code
byKieran Dundon
 
Florin Coada: MOBILE TESTING - A SIMPLE SOLUTION TO YOUR MOBILE SECURITY TESTING
byIevgenii Katsan
 
Antivirus support
byPeter james
 
Edu camp presentation 13/4/12
byAzeem Vasanwala
 
Spring Callout 2011
byAzlan Ismail
 

Viewers also liked

PPTX
Error handling and debugging in vb
bySalim M
 
PDF
Advanced Production Debugging
byTakipi
 
PDF
ServiceNow Knowledge11 Advanced Scripting & Debugging Lab
byJohn Roberts
 
PPT
PIC32MX Microcontroller Family
byPremier Farnell
 
PPTX
Addressing Modes
byMayank Garg
 
PDF
Software bugs
bySvitlana Dubyk
 
PPT
0106 debugging
byvkyecc1
 
PPT
Addressing modes
byMahesh Kumar Attri
 
ZIP
Debugging Debugging
byCISPA Helmholtz Center for Information Security
 
PPTX
Advanced Debugging with GDB
byDavid Khosid
 
PPT
11 instruction sets addressing modes
bySher Shah Merkhel
 
PDF
Single parenthood
byAzeem Vasanwala
 
PPTX
ADDRESSING MODE
byAnika Shahabuddin
 
PPT
1327 Addressing Modes Of 8086
bytechbed
 
PPTX
Addressing Modes Of 8086
byIkhlas Rahman
 
PPTX
How to become a .net debugging jedi (Microsoft R&D Center, Nazareth, Israel)
byMoaid Hathot
 
PPTX
Debugging Effectively - PHP UK 2017
byColin O'Dell
 
PDF
Writing mruby Debugger
byyamanekko
 
PDF
Debugging: Rules & Tools
byIan Barber
 
Error handling and debugging in vb
bySalim M
 
Advanced Production Debugging
byTakipi
 
ServiceNow Knowledge11 Advanced Scripting & Debugging Lab
byJohn Roberts
 
PIC32MX Microcontroller Family
byPremier Farnell
 
Addressing Modes
byMayank Garg
 
Software bugs
bySvitlana Dubyk
 
0106 debugging
byvkyecc1
 
Addressing modes
byMahesh Kumar Attri
 
Debugging Debugging
byCISPA Helmholtz Center for Information Security
 
Advanced Debugging with GDB
byDavid Khosid
 
11 instruction sets addressing modes
bySher Shah Merkhel
 
Single parenthood
byAzeem Vasanwala
 
ADDRESSING MODE
byAnika Shahabuddin
 
1327 Addressing Modes Of 8086
bytechbed
 
Addressing Modes Of 8086
byIkhlas Rahman
 
How to become a .net debugging jedi (Microsoft R&D Center, Nazareth, Israel)
byMoaid Hathot
 
Debugging Effectively - PHP UK 2017
byColin O'Dell
 
Writing mruby Debugger
byyamanekko
 
Debugging: Rules & Tools
byIan Barber
 

Similar to Infocomm Security: Software Bugs

PPTX
SOFTWARE BUGS.pptx for computer science and more
byDHARSHITHB
 
PPT
introduction.ppt
byRichaAngel2
 
PDF
security related to software program discuss how it protect and defend from s...
bykibitu
 
PPTX
Taxonomy of bugs total topic covered presentation
byPallaSrija
 
PPT
Introduction to software testing
byAruna Iyer
 
PPTX
Software_Testing_Overview.pptx
byJayPrakash255
 
PPTX
sri indu 1213 it
byjignash
 
PPTX
Software Testing overview jay prakash maurya.pptx
byJayPrakash779563
 
PPT
software testing mtehododlogies path testing
byRanjeet Reddy
 
PPT
debugging (1).ppt
byjerlinS1
 
PPT
Bug Advocacy
byDeepu S Nath
 
DOC
Software Bugs A Software Architect Point Of View
byShahzad
 
PPTX
How to fix bug or defects in software
byRajasekar Subramanian
 
PPT
179 black-box-software-testing-copyright-2003-cem-kaner1652
byngothanhtungth
 
PPTX
SYSNGS BUGS - definition, lifecycle and what can I do with them as a developer
byHanokh Aloni
 
PDF
Software Security Engineering (Learnings from the past to fix the future) - B...
byDebasisMohanty43
 
PPT
An important characteristic of a test suite that is computed by a dynamic ana...
byjeyasrig
 
PDF
11 Easy Ways to Identify and Solve Computer Troubleshoot Problem.pdf
byVital Tech
 
PDF
bug-advocacy
byKALYAN Chakravarthy
 
ODP
Glitches bugsandimportanceofgoodprogramming
bySridhar Pandurangiah
 
SOFTWARE BUGS.pptx for computer science and more
byDHARSHITHB
 
introduction.ppt
byRichaAngel2
 
security related to software program discuss how it protect and defend from s...
bykibitu
 
Taxonomy of bugs total topic covered presentation
byPallaSrija
 
Introduction to software testing
byAruna Iyer
 
Software_Testing_Overview.pptx
byJayPrakash255
 
sri indu 1213 it
byjignash
 
Software Testing overview jay prakash maurya.pptx
byJayPrakash779563
 
software testing mtehododlogies path testing
byRanjeet Reddy
 
debugging (1).ppt
byjerlinS1
 
Bug Advocacy
byDeepu S Nath
 
Software Bugs A Software Architect Point Of View
byShahzad
 
How to fix bug or defects in software
byRajasekar Subramanian
 
179 black-box-software-testing-copyright-2003-cem-kaner1652
byngothanhtungth
 
SYSNGS BUGS - definition, lifecycle and what can I do with them as a developer
byHanokh Aloni
 
Software Security Engineering (Learnings from the past to fix the future) - B...
byDebasisMohanty43
 
An important characteristic of a test suite that is computed by a dynamic ana...
byjeyasrig
 
11 Easy Ways to Identify and Solve Computer Troubleshoot Problem.pdf
byVital Tech
 
bug-advocacy
byKALYAN Chakravarthy
 
Glitches bugsandimportanceofgoodprogramming
bySridhar Pandurangiah
 

Recently uploaded

PDF
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
PPT
software-security-intro in information security.ppt
byismaeelsahib032
 
PDF
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
December Patch Tuesday
byIvanti
 
PPTX
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
PPTX
AI's Impact on Cybersecurity - Challenges and Opportunities
byYasir Naveed Riaz
 
PDF
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
API-First Architecture in Financial Systems
bycyy111112
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
PPTX
cybercrime in Information security .pptx
byismaeelsahib032
 
PPTX
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
PDF
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PPTX
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
software-security-intro in information security.ppt
byismaeelsahib032
 
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
December Patch Tuesday
byIvanti
 
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
AI's Impact on Cybersecurity - Challenges and Opportunities
byYasir Naveed Riaz
 
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
API-First Architecture in Financial Systems
bycyy111112
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
cybercrime in Information security .pptx
byismaeelsahib032
 
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 

Infocomm Security: Software Bugs

  • 1.
  • 2.
    WHAT ARE BUGS? • Error or fault in programming codes in the software made in the development stage that the programmer missed • May require high-levelled programming skills to find bugs and a fix for it especially if there are millions of lines of codes
  • 3.
    DEBUGGING • Todebug is to find/fix bugs. • Often more time and effort is spent on finding & fixing bugs than writing new codes. • The use of a debugger makes debugging easier & less time wasting • Some bugs come into effect only when certain conditions are triggered, so it might be missed in testing
  • 4.
    EFFECT OF BUGS • Some bugs may go undetected for a long time • Programs may freeze or crash • Security problems may enable malicious users such as hackers to perform privilege escalation
  • 5.
    TYPE OF BUGS • Logic bugs: logic errors in program code (eg. infinite loops), usually harder to notice when there are many lines of codes  some may go unnoticed • Syntax bugs: using wrong operator, many programming software (eg. Netbeans, Eclipse) checks & shows the error made • Arithmetic bugs, resource bugs, teamworking bugs, interfacing bugs, performance bugs, multi-threading programming bugs
  • 6.
    WHAT CAN YOUDO WITH A BUG? • They can be used in cyber warfare as weapons In May 2014, US indicted 5 members of Chinese army for stealing data from American companies (eg. Westinghouse & Alcoa) • Use it for zero-day • Saettlal citk sfor profit • Fix it and take preventive measures
  • 7.
    WHAT WOULD HAPPENIF IT ENDS UP IN THE HANDS OF… • Malicious users  bugs may be sold to bug brokers, Cybercriminals and Cyberterrorists  lead to zero-day attacks • Software makers  fix it  release patch for fixing the bug • Software security companies (eg. Exodus Intelligence)  sell bugs to their clients which range from software makers to government organisations
  • 8.
    EXAMPLES OF BUGS& PROBLEMS CAUSED • Stuxnet (2009, the first true cyber weapon), Heartbleed (recent - 2014), Y2K (Year 2000 problem) • Serious problems can arise depending on how the bugs are exploited. • In the medical industry, bugs in the code controlling a therapy machine caused some patients deaths (1980) • Bugs cost US economy an estimated $59 billion yearly
  • 9.
    IN A NUTSHELL • Bugs can be useful depending on how they are used. • Bugs help us to find new ways to prevent more bugs from being created • The more bugs we analyse, the more we can learn & improve our programming skills.
  • 10.
    THIS PRESENTATION ISBASED ON… • Grossman, L., 2014. The Code War. Time Magazine, p. 16. • Wikipedia, 2012. Software bug - Wikipedia, the free encyclopedia. [Online] Available at: http://en.wikipedia.org/wiki/Software_bug#Well-known_bugs
  • 11.
    THANK YOU! Letslearn from bugs! 

Editor's Notes

  • #3 Firstly, What are software bugs? Software bugs are basically errors in programming codes made in the development stage of the software. Some bugs are missed by the programmer the bug may not appear in the testing stage and thus the software is released with the bug. High-levelled programming skills might be required to debug especially if there are millions of lines of codes.
  • #4 To debug is to find and fix bugs. We often spend more time & effort on finding & fixing bugs than writing new codes. Many IDEs have debuggers integrated into them. With the use of a debugger, debugging becomes easier & less time wasting. Also, some bugs may only occur when certain conditions are met, so it might be missed in the testing stage of the product.
  • #5 Bugs can have serious effects on our programs, some may even go undetected for a long time. They can also cause programs to freeze or crash which may have a devastating consequence in some situations. With bugs, there may also be security problems as malicious users such as hackers may be to perform privilege escalation to access restricted rights.
  • #6 The 2 type of bugs that we are more familiar with is logic bugs & syntax bugs. Other bugs include Arithmetic bugs, resource bugs, teamworking bugs, interfacing bugs, performance bugs, multi-threading programming bugs
  • #7 A bug can be used for both good & bad purposes, they can be used in cyber warfare as weapons. For example, in may 2014, US indicted 5 member of the Chinese army for stealing data from American companies which include Westinghouse & Alcoa. Recently, there is an increase in China’s electronic theft of US intellectual property. It can also be used for zero-day attacks where fresh and new bugs are exploited to attack systems. Many sell it for profit while some attempt to fix it.
  • #8 If bugs end up in the hands of malicious users, it is likely that they will be sold to bug brokers who help to spread the bug, cybercriminals as well as Cyberterrorists who often have bad intentions. For software security companies, many tend to sell bugs to their clients while some directly alert the software makers of these errors. Their clients range from software makers to government organisations such as the FBI. From what I read, they provide their clients with the solutions to fix the bugs as well as a way to exploit it. For example, last year, the FBI busted a company called Freedom Hosting does criminal stuff using a vulnerability in Firefox
  • #9 Some examples of popular bugs are Stuxnet in 2009 which is the first true cyber weapon created. Also, more recent ones such as the Heartbleed bug which was found this year and the Y2K problem where it was feared that worldwide economic collapse would happen at the start of the year 2000 as a result of computers thinking it was 1900. Fortunately, no major problems occurred. Serious problems can arise depending on how the bugs are exploited. An example is in the medical industry, bugs in the code controlling a radiation therapy machine caused some patients deaths in 1980. Also, bugs cost the US economy as much as $59 billion yearly.
  • #10 In a nutshell, bugs can be useful depending on how they are used. Although they have caused many problems & are unwanted, they help us learn from our mistakes and find new ways to prevent more bugs from being created. The more bugs we create, the more we can learn & improve our programming skills.