Assessing the Usefulness of Testing for Validating the Correctness of Security Risk Models Based on an Industrial Case Study

Sammendrag

We present the results of an evaluation in which the objective was to assess how useful testing is for validating and gaining confidence in the correctness of security risk models. The evaluation is based on a case study where the target system analyzed was a web-based application. The evaluation suggests that the testing was useful in the sense that it yielded new information which resulted in an update of the security risk model after testing.
Oppdragsgiver: Norwegian Research Council

Les publikasjonen

Kategori

Rapport

Oppdragsgiver

SINTEF AS / 102002253

Språk

Annet

Forfatter(e)

Gencer Erdogan
Fredrik Seehusen
Ketil Stølen
Jan Øyvind Aagedal

Institusjon(er)

SINTEF Digital / Sustainable Communication Technologies
Diverse norske bedrifter og organisasjoner

År

2014

Forlag

SINTEF

Hefte nr.

A26187

ISBN

9788214053555

Les fulltekst

https://hdl.handle.net/11250/2432276

Vis denne publikasjonen hos Cristin

Kontakt oss

Tjenester

Rapporter og publikasjoner

Forskningssenter og samarbeid

Karriere

Bærekraft

Institutter

Andre enheter

Ledelse og organisering

Om oss

Følg oss