Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Security testing approaches - for research, industry and standardization

: Rennoch, Axel; Schieferdecker, Ina; Großmann, Jürgen


Yuan, Y. (Ed.):
Trustworthy Computing and Services. International Conference, ISCTCS 2013 : Beijing, China, November 2013, Revised Selected Papers
Berlin: Springer, 2014 (Communications in computer and information science 426)
ISBN: 978-3-662-43908-1 (Online)
ISBN: 978-3-662-43907-4 (Print)
International Standard Conference on Trustworthy Computing and Services (ISCTCS) <2013, Beijing>
Fraunhofer FOKUS ()
model-based security testing; risk analysis; test automation; fuzzing

Recently, in the Security testing domain a lot of knowledge has been collected from a significant amount of research. The contribution provides an introduction to advanced security testing methods and techniques in the context of European research and standardization projects. This includes numerous guidelines and best practices that have been identified and are applied in the context of industrial case studies. In particular it addresses risk modeling, security test pattern, functional security tests as well as fuzz testing, as important contributions to systematic, automatized test approaches in research, industry and standardization.