This book provides an overview of software security analysis in a DevOps cycle including requirements formalisation, verification and continuous monitoring.  It presents an overview of the latest techniques and tools that help engineers and developers verify the security requirements of large-scale industrial systems and explains novel methods that enable a faster feedback loop for verifying security-related activities, which rely on techniques such as automated testing, model checking, static analysis, runtime monitoring, and formal methods. The book consists of three parts, each covering a different aspect of security engineering in the DevOps context. The first part, "Security Requirements", explains how to specify and analyse security issues in a formal way. The second part, "Prevention at Development Time", offers a practical and industrial perspective on how to design, develop and verify secure applications. The third part, "Protection at Operations", eventually introduces tools for continuous monitoring of security events and incidents. Overall, it covers several advanced topics related to security verification, such as optimizing security verification activities, automatically creating verifiable specifications from security requirements and vulnerabilities, and using these security specifications to verify security properties against design specifications and generate artifacts such as tests or monitors that can be used later in the DevOps process. The book aims at computer engineers in general and does not require specific knowledge. In particular, it is intended for software architects, developers, testers, security professionals, and tool providers, who want to define, build, test, and verify secure applications, Web services, and industrial systems.

This book constitutes the refereed proceedings of the 14th International Conference on the Quality of Information and Communications Technology, QUATIC 2021, held in Algarve, Portugal*, in September 2021. The 30 full papers and 9 short papers were carefully reviewed and selected from 98 submissions. The papers are organized in topical sections: ICT verification and validation; software evolution; process modeling, improvement and assessment; quality aspects in quantum computing; safety, security, and privacy; quality aspects in machine learning, AI and data analytics; evidence-based software quality engineering; quality in cyber-physical systems; software quality education and training. *The conference was held virtually due to the COVID-19 pandemic.

This book constitutes the refereed proceedings of the 33rd IFIP WG 6.1 International Conference on Testing Software and Systems, ICTSS 2021, which was supposed to be held in London, UK, but was held virtually due to the COVID-19 pandemic. The 10 regular papers and 7 short papers presented were carefully reviewed and selected from 36 submissions. Additionally, the volume includes 6 project reports. The papers are divided into the following topical subheadings: Finite State Machine-based Testing; Test Generation and Selection; AI-based Techniques; Use Cases; Project Reports.

This book constitutes the refereed proceedings of the 29th IFIP WG 6.1 International Conference on Testing Software and Systems ICTSS 2017, held in St. Petersburg, Russia, in October 2017. The 18 full papers and 4 short papers presented were carefully reviewed and selected from 41 submissions. The topics of the volume cover model based testing; test derivation and monitoring; fault localization and system testing including real time systems.