User interfaces (UIs) define the modes through which humans interact with software-based systems, affecting product quality and user experiences. To verify the behavior of software, UI testing is crucial to inspect visual elements and ensure that software function as intended. However, UI testing is challenging---and an increasing number of security vulnerabilities can be exploited through UIs. Further, rapid release processes, such as continuous integration and continuous deployment (CI/CD), are essential in modern software development to integrate, test, and deploy software chages to users efficiently. However, testing and securing UIs in CI/CD is challenging due to the complexity of user interfaces. As UI-based attacks become more prevalent and complex, novel solutions are needed to assess the security of UIs in rapid release environments.
This workshop aims to explore the intersections of testing and securing UIs in CI/CD pipelines. We invite cybersecurity, UI, and software development-focused researchers, practitioners, and stakeholders to participate in this event. The workshop will be organized as an interactive "working group", featuring research presentations to elicit feedback on preliminary research findings and interactive discussions focused on uncovering challenges in current practices and brainstorming solutions to motivate techniques to support testing and securing user interfaces in CI/CD workflows.
The workshop will be held on Saturday, May 10th from 10:00am-2:15pm in Torgersen 1100. Registration for this workshop is free and open to all participants interested in this topic. The workshop will be hybrid, allowing for participants to join in-person and remotely via Zoom (link to be shared with registrants). Please complete the registration link to sign up for an attendance option and provide more details for the conference.
A brief overview of the schedule is below:
| Time | Activity |
|---|---|
| 10:00 - 11:00 | Welcome Virtual Keynote: Andrew Knight 🐼 |
| 🧪 UI Testing 🧪 | |
| 11:00 - 11:15 | Sharing Research Findings |
| 11:15 - 12:00 | Reflection and Ideation |
| 12:00 - 1:00 | Lunch |
| 🔒 UI Security 🔒 | |
| 1:00 - 1:15 | Sharing Research Findings |
| 1:15 - 2:00 | Reflection and Ideation |
| 2:00 - 2:15 | Closing |
- Attendees will be able to start arriving at 9:30.
- Location: 620 Drillfield Dr, Blacksburg, VA 24060
Andrew "Pandy" Knight |
Andrew Knight, also known as “Pandy,” is the Automation Panda. He’s a software quality champion who loves to help people build better quality software. Currently, he works as the Senior Director of Product Management at Cycle Labs, focusing on building an excellent test automation platform for enterprise systems. Previously, Pandy spent a decade as a SDET building solutions to testing problems at various tech companies. He also previously led Developer Relations and Test Automation University at Applitools. As an avid supporter of open source software, Pandy is a Playwright Ambassador as well as the lead developer for Boa Constrictor, the .NET Screenplay Pattern. On the side, he is writing a book on software testing with Manning Publications. Apart from software, Pandy spends time with his family, his French Bulldog, and his vintage Volkswagens. Check out his tech blog at AutomationPanda.com, and follow him on Twitter at @AutomationPanda.
Dr. Chris Brown |
Xiaoxiao Gan |
Arpit Thool |
We thank the following organizations for their support:
