Combining Security Risk Assessment and Security Testing Based on Standards

机译：基于标准的安全风险评估与安全测试相结合

获取原文

获取原文并翻译 | 示例

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Managing cyber security has become increasingly important due to the growing interconnectivity of computerized systems and their use in society. A comprehensive assessment of cyber security can be challenging as its spans across different domains of knowledge and expertise. For instance, identifying cyber security vulnerabilities requires detailed technical expertise and knowledge, while the assessment of organizational impact and legal implications of cyber security incidents may require expertise and knowledge related to risk and compliance. Standards like ISO 31000 and ISO/IEC/IEEE 29119 detail the relevant aspects of risk management and testing and thus provide guidance in these areas. However, both standards are not exclusively dedicated to the subject of security and do not cover the explicit integration between security risk assessment and security testing. We think however, that they provide a good basis for that. In this paper we show how ISO 31000 and ISO/IEC/IEEE 29119 can be integrated to provide a comprehensive approach to cyber security that covers both security risk assessment and security testing.

机译：由于计算机化系统及其在社会中的日益增长的互连性，管理网络安全已变得越来越重要。对网络安全进行全面评估可能具有挑战性，因为它涵盖了知识和专业知识的不同领域。例如，识别网络安全漏洞需要详细的技术专业知识和知识，而对网络安全事件的组织影响和法律影响的评估可能需要与风险和合规性有关的专业知识。像ISO 31000和ISO / IEC / IEEE 29119这样的标准详细介绍了风险管理和测试的相关方面，从而在这些领域提供了指导。但是，这两个标准并非专门针对安全性主题，也没有涵盖安全风险评估和安全测试之间的明确集成。但是，我们认为，它们为此提供了良好的基础。在本文中，我们展示了如何将ISO 31000和ISO / IEC / IEEE 29119集成在一起，以提供涵盖安全风险评估和安全测试的全面的网络安全方法。

著录项

来源
《Risk assessment and risk-driven testing》|2015年|18-33|共16页
会议地点 Berlin(DE)
作者
Juergen Grossmann; Fredrik Seehusen;
展开▼
作者单位

Fraunhofer FOKUS, Berlin, Germany;

SINTEF ICT, Oslo, Norway;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词

相似文献

外文文献
中文文献
专利

1. Combining Reusable Test Cases and Continuous Security Testing for Reducing Web Apps Security Risks [J] . Sen-Tarng Lai International Journal of Software Engineering & Applications (IJSEA) . 2016,第6期

机译：将可重用的测试用例与持续的安全性测试相结合，以降低Web Apps安全风险
2. Research on Liquefied Natural Gas(LNG) inland river transportation security risk assessment and security technology based on risk management [J] . Hu Yuchang, Xu Liansheng MATEC Web of Conferences . 2020,第2期

机译：基于风险管理的液化天然气内河运输安全风险评估与安全技术研究
3. Análisis de estrategias de gestión de seguridad informática con base en la metodología Open Source Security Testing Methodology Manual (OSSTMM) para la intranet de una Institución de Educación Superior - Analysis of Strategies of Computer Security Management Based on the Open Source Security Testing Manual Methodology (OSSTMM) for the Intranet of a Higher Education Institution [J] . Diego Sebastian Gordón Revelo RECIBE . 2018,第1期

机译：基于大学内部网的《开源安全测试方法手册》（OSSTMM）的计算机安全管理策略分析-基于《开源安全测试手册方法》（OSSTMM）的计算机安全管理策略分析），用于高等教育机构的内部网
4. Combining Security Risk Assessment and Security Testing Based on Standards [C] . Juergen Grossmann, Fredrik Seehusen International workshop on risk assessment and risk-driven testing . 2015

机译：基于标准结合安全风险评估和安全测试
5. A Bayesian decision network model for analyzing biosecurity risk: Using a test-action biosecurity risk framework to develop a decision-theoretic model of white spot syndrome virus (WSSV) import risk for Hawai'i shrimp aquaculture. [D] . Kam, Lotus Elizabeth Y. W. 2006

机译：用于分析生物安全风险的贝叶斯决策网络模型：使用测试行为生物安全风险框架开发夏威夷虾养殖的白斑综合症病毒（WSSV）进口风险的决策理论模型。
6. Testing the Image Quality of Cabinet X-ray Systems for Security Screening: The Revised ASTM F792 Standard [O] . Jack L. Glover, Ronald E. Tosh, Lawrence T. Hudson, -1

机译：测试用于安全筛选的机柜X射线系统的图像质量：修订的ASTM F792标准
7. P569Diastolic dyssynchrony is associated with exercise intolerance in hypertensive patients with left ventricular hypertrophyP570Echocardiographic pattern of acute pulmonary embolism, analysis of consecutive 511 patientsP571Clinical significance of ventricular interdependence and left ventricular function in patients with pulmonary hypertension receiving specific vasodilator therapyP572Haemodynamic characteristics and ventricular mechanics in post-capillary and combined pre- and post-capillary pulmonary hypertensionP573Relationship between hematological response and echocardiographic features in patients with light chains systemic amyloidosisP574Myocardial changes in patients with anorexia nervosaP575Giant cell arteritis presenting as fever of unknown origin: role of clinical history, early positron emission tomography and ultrasound screeningP576Subclinical systolic dysfunction in systemic sclerosis is not influenced by standard rheumatologic therapy - a 4D echocardiographic studyP577Cardiac index correlates with the degree of hepatic steathosis in obese patients with obstructive sleep apneaP578Myocardial mechanics in top-level endurance athletes: a three-dimensional speckle tracking studyP579The athlete heart: what happens to myocardial deformation in physiological adaptation to sportsP580Association between left ventricle intrinsic function and urine protein-creatinine ratio in preeclampsia before and after deliveryP581Dilatation of the aorta in children with bicuspid aortic valveP582Cardiovascular functional abnormalities in patients with osteogenesis imperfectaP583Dobutamine stress test fast protocol: diagnostic accuracy and securityP584Prognostic value of non-positive exercise echocardiography in the patients submitted to percutaneous coronary interventionP585The use of myocardial strain imaging in the detection of coronary artery disease during stress echocardiographyP586Preserved O2 extraction exercise response in heart failure patients with chronotropic insufficiency: evidence for a central cardiac rather than peripheral oxygen uptake limitationP587Major determinant of O2 artero-venous difference at peak exercise in heart failure and healthy subjectsP588Stress echocardiography with contrast perfusion analysis for a more sensitive test for ischemic heart diseaseP589Assessment of mitral annular physiology in myxomatous mitral disease with 3D transesophageal echocardiography: comparison between early severe mitral regurgitation and decompensated groupP590Three-dimensional transesophageal echocardiographic assessment of the mitral valve geometry in patients with mild, moderate and severe chronic ischemic mitral regurgitationP591Left atrial appendage closure. Multimodality imaging in device size selectionP592Contributions of three-dimensional transesophageal echocardiography in the evaluation of aortic atherosclerotic plaquesP593Agitated blood-saline is superior to agitated air-saline for echocardiographic shunt studies [O] . IH. Jung, K. Kurnicka, R. Enache, 2016

机译：P569DiaStolic Dyssynchrony与患有左心室血液高效患者的锻炼性不耐受急性肺栓塞模式，分析肺动脉高血压患者心室相互依存和左心室功能的连续511例患者分析，患者患者患者毛细血管分析并结合毛细血管肺炎患者血液响应和超声心动图特征的预毛细血管肺动脉高压和毛细血管肺炎术患者患者厌食症患者患者的血液学响应和超声心动图。系统硬化症中的收缩功能障碍不受标准风湿病治疗的影响 - 4D超声心动图STOPYP577心脏指数与肥胖睡眠Apneap578Myocardial机制在顶级耐力运动员中的肝脏病变程度相关：三维散斑跟踪STOPYP579运动员心脏：心肌变形在生理调整中的心肌变形，左心室内部功能之间的运动量和诊断的准确性，并在患者提交经皮冠状动脉非正运动超声心动图的securityP584Prognostic值：在之前并与患者的骨生成imperfectaP583Dobutamine压力测试快速协议叶主动脉valveP582Cardiovascular功能异常儿童主动脉deliveryP581Dilatation后先兆子痫尿蛋白肌酐比干预措施，使用心力学超声术治疗冠状动脉疾病检测心肌菌株在心力衰竭患者中冠状动脉疾病中的使用Qufibess：中央心脏的证据，而不是外周氧气摄取限制，心力衰竭和健康主题SP588静脉内超声心动图的峰锻炼中O2动脉差异的差异，具有对比灌注分析，对近视二尖瓣缺血性心脏病的缺血性心脏病的更敏感性分析。疾病与3D异口管超声心动图：早期严重二尖瓣流动和失代偿的血清瓣膜瓣膜瓣膜几何学患者的肝硬化，中度慢性缺血二尖瓣术术患者的比较。器件尺寸的多模成像选择P592的三维经细胞激素超声心动图在主动脉动脉粥样硬化PLAQUESC593致血液中的评估中的血液 - 盐水优于超声心动图分流研究的搅拌空气 - 盐水

Combining Security Risk Assessment and Security Testing Based on Standards

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅