A systematic integration of risk analysis and security testing allows for optimizing the test process as well as the risk assessment itself. The result of the risk assessment, i.e. the identified vulnerabilities, threat scenarios and unwanted incidents, can be used to guide the test identification and may complement requirements engineering results with systematic information concerning the threats and vulnerabilities of a system and their probabilities and consequences. This information can be used to weight threat scenarios and thus help identifying the ones that need to be treated and tested more carefully. On the other side, risk-based testing approaches can help to optimize the risk assessment itself by gaining empirical knowledge on t...
The goal of risk-based security testing is to improve the security testing process in order to cover...
The aim of security testing is to find weaknesses in software implementation, configuration or deplo...
A risk is something that can happen and a problem is something that we know will happen or that has ...
Nowadays, software-intensive systems continuously pervade several areas of daily life, even critical...
There are several approaches to risk-based testing. They have in common that risk is the focus when ...
This document constitutes the second deliverable for task 4.2 and task 4.3 of work package 4 on risk...
Complex networked systems have become an integral part of our supply infrastructure. Mobile devices,...
The continuous increase of sophisticated cyber security risks exposed to the public, industry, and g...
Recently, in the Security testing domain a lot of knowledge has been collected from a significant am...
This report is an evaluation describing the experiences obtained from a case study, carried out in a...
Abstract: Nowadays, there are more projects, more competitive pressures and greater failure risk whi...
One of the challenges of secure software construction (and maintenance) is to get control over the m...
International audienceIndustrial systems have undergone a transformation with the introduction of co...
Security risk assessment in the requirements phase is challenging because probability and damage of ...
Software testing has often to be done under severe pressure due to limited resources and a challengi...
The goal of risk-based security testing is to improve the security testing process in order to cover...
The aim of security testing is to find weaknesses in software implementation, configuration or deplo...
A risk is something that can happen and a problem is something that we know will happen or that has ...
Nowadays, software-intensive systems continuously pervade several areas of daily life, even critical...
There are several approaches to risk-based testing. They have in common that risk is the focus when ...
This document constitutes the second deliverable for task 4.2 and task 4.3 of work package 4 on risk...
Complex networked systems have become an integral part of our supply infrastructure. Mobile devices,...
The continuous increase of sophisticated cyber security risks exposed to the public, industry, and g...
Recently, in the Security testing domain a lot of knowledge has been collected from a significant am...
This report is an evaluation describing the experiences obtained from a case study, carried out in a...
Abstract: Nowadays, there are more projects, more competitive pressures and greater failure risk whi...
One of the challenges of secure software construction (and maintenance) is to get control over the m...
International audienceIndustrial systems have undergone a transformation with the introduction of co...
Security risk assessment in the requirements phase is challenging because probability and damage of ...
Software testing has often to be done under severe pressure due to limited resources and a challengi...
The goal of risk-based security testing is to improve the security testing process in order to cover...
The aim of security testing is to find weaknesses in software implementation, configuration or deplo...
A risk is something that can happen and a problem is something that we know will happen or that has ...