ETSI TR 101 583

ETSI TR 101 583 defines terminology and an ontology which together provide the basis for a commonunderstanding of security testing techniques which can be used in testing communication products and systems. Theterminology and ontology have been derived from latest research, but also current standards and best practices specifiedby a broad range of standards organizations and industry bodies. The present document aims to provide information topractitioners on techniques used in testing, and assessment of security, robustness and resilience throughout the productand systems development lifecycle. The present document lists terms and methods for the following security testingapproaches:

• Verification of security functions and risk-based testing.
• Load, stress and performance testing.
• Resilience and robustness testing (fuzzing).
• Penetration testing.

Static Application Security Testing (SAST) tools and techniques are out of scope for the present document.

Edition:

1.1.1

Published:

03/01/2015

Number of Pages:

16

File Size:

1 file , 200 KB

Note:

This product is unavailable in Russia, Ukraine, Belarus