Security testing: mind the knowledge gap.

Considerable reliance and trust is placed on software performing as expected, even when subjected to malicious treatment. Arguably, the most significant consequences to both the software vendor and the user result from security vulnerabilities being present within released code. To fully appreciate and test for these types of issues knowledge outside of "general" software testing techniques is typically required. As such, we were keen to establish whether there was a relationship between the reported, general lack of security testing, and what is currently being taught at the undergraduate level.