Internet Archive Scholar

Security testing framework: strategy and approach

Thorsten Schulz, Andreas Hohenegger, Staffan Persson, Alvaro Ortega, Reinhard Hametner, Michael Paulitsch, Caspar Gries, Sergey Tverdyshev, Holger Blasum, Kertis Tomáš
2017 Zenodo  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.2 MB)
https://web.archive.org/web/20200209130719/https://zenodo.org/record/2586591/files/certMILS-D4.1-SecurityTesting-Framework-PU-M09.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL. The file type is application/pdf.

This deliverable evaluates the state of the art in security testing techniques in relation to relevant industrial security standards. The research starts with a survey of non-industrial security frameworks and general identification of security vulnerabilities. We then have a look into the different testing contexts covered by Common Criteria requirements and IEC62443 standards and certification schemes. This is also brought into context with the certMILS application pilots and the
more » ... nd the applicability to testing of compositions as the fundamental architecture of a MILS system. Future work will focus on refining features of the testing framework for security testing of operating system components.The strategy for these activities is outlined in the third chapter, together with a short study of the technical feasibility.
doi:10.5281/zenodo.2586591 fatcat:lz4li6fdwfhnnktbfdtjlsnlzu
Open Access
Citation

Thorsten Schulz, Andreas Hohenegger, Staffan Persson, Alvaro Ortega, Reinhard Hametner, Michael Paulitsch, Caspar Gries, Sergey Tverdyshev, Holger Blasum, Kertis Tomáš. "Security testing framework: strategy and approach." Zenodo (2017)