| 报告题名: | An Evaluation of a Test-driven Security Risk Analysis Method Based on an Industrial Case Study |
| 作者: | Erdogan, Gencer; Seehusen, Fredrik; Li, Yan
|
| 出版者: | SINTEF
|
| 出版年: | 2013
|
| 发表日期: | 2013
|
| 国家: | 挪威
|
| 语种: | 英语
|
| 英文摘要: | This report is an evaluation describing the experiences obtained from a case study, carried out in a period of eight months from June 2012 to January 2013, in which we conducted a test-driven security risk analysis. Test-driven security risk analysis is a method for carrying out security risk analysis in which security testing is used to support the security risk analysis. The method consists of three main phases. In Phase 1, a security risk analysis is carried out. In Phase 2, security testing is carried out with respect to the security risk analysis. In the 3rd and final phase, the results obtained from the security risk analysis are validated and updated with respect to the test results. Our objective with the case study was to assess how useful testing is for gaining confidence in the correctness of the risk models produced in the risk analysis. To make the evaluation precise, we analysed the difference between the risk model produced before testing and the updated risk model after testing. The results obtained from the case study shows that testing contributes in gaining higher confidence of the correctness of the risk models. Oppdragsgiver: Norwegian Research Council |
| URL: | https://brage.bibsys.no/xmlui/bitstream/handle/11250/2432313/SINTEF%2bA25605.pdf?sequence=2&isAllowed=y
|
| 资源类型: | 研究报告
|
| 标识符: | http://119.78.100.158/handle/2HF3EXSE/28793
|
| Appears in Collections: | 过去全球变化的重建
影响、适应和脆弱性
科学计划与规划
气候变化与战略
全球变化的国际研究计划
气候减缓与适应
气候变化事实与影响
|
| File Name/ File Size |
Content Type |
Version |
Access |
License |
|
|---|
| SINTEF+A25605.pdf(583KB) | 研究报告 | -- | 开放获取 | | View
Download
|
|
| Recommended Citation: | |
Erdogan, Gencer,Seehusen, Fredrik,Li, Yan. An Evaluation of a Test-driven Security Risk Analysis Method Based on an Industrial Case Study. 2013-01-01.
|
|
|