Progress Reports on Security Testing Methodologies and Case Studies

security sig in mts 7 th june 2015 n.w
1 / 8
Embed
Share

Delve into the latest advancements in security testing methodologies and case studies related to Smart Cards, Industrial Automation, Radio Protocols, Transport/Automotive, and more. Explore terminologies, risk-based testing approaches, and security assurance lifecycle documents for comprehensive insights in the field of security testing.

  • Security Testing
  • Case Studies
  • Methodologies
  • Security Assurance
  • Risk-based Testing
rayaanacharya
vgrav Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. SECURITY SIG IN MTS 7TH JUNE 2015 PROGRESS REPORT Fraunhofer FOKUS

  2. MTS SECURITY SIG Work Items Case Studies: To assemble case study experiences related to security testing in order to have a common understanding in MTS and related committees. Industrial experiences may cover but are not restricted to the following domains: Smart Cards, Industrial Automation, Radio Protocols, Transport/Automotive, Telecommunication Terminology: To collect the basic terminology and ontology (relationship between stake holder and application) to be used for security testing in order to have a common understanding in MTS and related committees. TR 101 583 Terminology Security Assurance Life Cycle: Guidance to the application system designers in such a way to maximise both security assurance and the verification and validation of the capabilities offered by the system's security measures. Risk-based Security Testing: Describes a set of methodologies that combine risk assessment and testing. The methodologies are based on standards like ISO 31000 and IEEE 829/29119 TR 101 582 Case Studies EG 203 250 EG 203 251 Security Assurance Lifecycle Risk-based Security Testing TC MTS Security SIG Update 2014-05-27

  3. EG 203 250: Security Assurance Lifecycle Document Reference DEG 203 250 Document Title Methods for Testing and Specification (MTS); Security Assurance Lifecycle Document Purpose Guide to the application of security capabilities in systems in such a way to maximise both security assurance and the verification and validation of the capabilities offered by the system's security measures. Security Assurance Lifecycle Document Status Stable Draft v0.0.10 (2015-05) 3 Security SIG in MTS, 4-5 October 2011

  4. EG 203 250: Security Assurance Lifecycle -- Progress Document Progress 1. Work Plan produced and updated 2. Initial draft structure agreed, 3. Design section of Life Cycle drafted 4. TVRA parts reduced 5. Aligned with TR 101583 Open Issues Guidance character need to be improved Scope section in WI cover sheet does not comply with document content Language shall be simplified TB approval October 1st, 2015 4 Security SIG in MTS, 4-5 October 2011

  5. EG 203 251: Risk-based security assessment and testing methodologies Document Reference DEG 203 251 Document Title Methods for Testing and Specification (MTS); Risk-based security testing methodologies Test-based risk assessment methodologies Document Purpose Describes a set of methodologies that combine risk assessment and testing. The methodologies are based on standards like ISO 31000 and IEEE 829/29119. Document Status Stable Draft v0.0.12 (2015-05) 5 Security SIG in MTS, 4-5 October 2011

  6. EG 203 251: Risk-based security assessment and testing methodologies Document Progress 1. Work Plan produced and updated 2. Initial draft structure agreed, 3. Aligned with TR 101583 4. Renaming to Risk-based security assessment and testing methodologies 5. Added section on compositional approach and integration with SLC 6. Revision of TBRA part 7. Content accepted at RISK 2015 (workshop hosted by OMG) Next steps/open issues TB approval planned for October 1st, 2015 6 Security SIG in MTS, 4-5 October 2011

  7. New WI proposal Requirements metrics and acceptance criteria for Fuzzing (WI proposal planned for next MTS meeting in May 2015) 7 Security SIG in MTS, 4-5 October 2011

  8. Outlook Future topics/issues/cooperation: Document timeline: TR 101 582 (Case Studies) has been approved in May 2014 TR 101 583 Terminology has been approved in January 2015 DEG 203 250 (Security Assurance Lifecycle) to be approved in October 2015 DEG 203 251 (Risk-based Security Testing) to be approved in October 2015 - - - - 8 Security SIG in MTS, 4-5 October 2011

Related


Dominate SK0-005 Ace CompTIA Server Certification Exam

Dominate SK0-005 Ace CompTIA Server Certification Exam

certsgrade
Best Laundry Renovations in Chandlers Hil

Best Laundry Renovations in Chandlers Hil

jack4
SSC MTS & HAVALDAR EXAM PATTERN 2024

SSC MTS & HAVALDAR EXAM PATTERN 2024

Manasa
SIG Meeting for Driving and Neurological Conditions - WFNR 2024

SIG Meeting for Driving and Neurological Conditions - WFNR 2024

lillymay
IEEE 802.11-20/1238r5 August 2020 Preamble Design Open Issues

IEEE 802.11-20/1238r5 August 2020 Preamble Design Open Issues

mateusz
IEEE 802.11-20/0029r3 Preamble Structure and SIG Contents Overview

IEEE 802.11-20/0029r3 Preamble Structure and SIG Contents Overview

andy
Discussion on Multi-RU Allocation in IEEE 802.11be Standard

Discussion on Multi-RU Allocation in IEEE 802.11be Standard

bartholomew
IEEE 802.11-20/0087r0 Discussions on U-SIG Content and EHT-SIG Format

IEEE 802.11-20/0087r0 Discussions on U-SIG Content and EHT-SIG Format

araminta
Significant Figures in Measurements

Significant Figures in Measurements

lanelo
Analysis of School Improvement Grant Program Performance in Great City Schools

Analysis of School Improvement Grant Program Performance in Great City Schools

blacketer_d
Get Certified: CAS-005 Dumps PDF with Verified Questions

Get Certified: CAS-005 Dumps PDF with Verified Questions

Emma3
Master the XK0-005 Exam with Expertly Crafted Dumps PDF

Master the XK0-005 Exam with Expertly Crafted Dumps PDF

Emma3
Cyber Insurance SIG Achievements and Plans

Cyber Insurance SIG Achievements and Plans

shol
Report on Wireless Blockchain Networks by SIG Chairs

Report on Wireless Blockchain Networks by SIG Chairs

gwendo
ACA.SAS.SIG Meeting - July 13, 2022 - Overview and Nominations

ACA.SAS.SIG Meeting - July 13, 2022 - Overview and Nominations

jaym_5
IEEE 802.11-20/1317r1 EHT-SIG Proposal Discussion

IEEE 802.11-20/1317r1 EHT-SIG Proposal Discussion

winckler_c
January 2016 IEEE 802.11-16/0104r0: Rate Matching for HE-SIG-B

January 2016 IEEE 802.11-16/0104r0: Rate Matching for HE-SIG-B

nig_ava
Update on Bluetooth SIG's Plans for Spectrum Sharing

Update on Bluetooth SIG's Plans for Spectrum Sharing

zoemar

More Related Content