Project deliverable Open Access

Security testing framework: strategy and approach

Schulz, Thorsten; Hohenegger, Andreas; Persson, Staffan; Ortega, Alvaro; Hametner, Reinhard; Paulitsch, Michael; Gries, Caspar; Tverdyshev, Sergey; Blasum, Holger; Tomáš, Kertis


DCAT Export

<?xml version='1.0' encoding='utf-8'?>
<rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:adms="http://www.w3.org/ns/adms#" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:dct="http://purl.org/dc/terms/" xmlns:dctype="http://purl.org/dc/dcmitype/" xmlns:dcat="http://www.w3.org/ns/dcat#" xmlns:duv="http://www.w3.org/ns/duv#" xmlns:foaf="http://xmlns.com/foaf/0.1/" xmlns:frapo="http://purl.org/cerif/frapo/" xmlns:geo="http://www.w3.org/2003/01/geo/wgs84_pos#" xmlns:gsp="http://www.opengis.net/ont/geosparql#" xmlns:locn="http://www.w3.org/ns/locn#" xmlns:org="http://www.w3.org/ns/org#" xmlns:owl="http://www.w3.org/2002/07/owl#" xmlns:prov="http://www.w3.org/ns/prov#" xmlns:rdfs="http://www.w3.org/2000/01/rdf-schema#" xmlns:schema="http://schema.org/" xmlns:skos="http://www.w3.org/2004/02/skos/core#" xmlns:vcard="http://www.w3.org/2006/vcard/ns#" xmlns:wdrs="http://www.w3.org/2007/05/powder-s#">
  <rdf:Description rdf:about="https://doi.org/10.5281/zenodo.2586591">
    <rdf:type rdf:resource="http://www.w3.org/ns/dcat#Dataset"/>
    <dct:type rdf:resource="http://purl.org/dc/dcmitype/Text"/>
    <dct:identifier rdf:datatype="http://www.w3.org/2001/XMLSchema#anyURI">https://doi.org/10.5281/zenodo.2586591</dct:identifier>
    <foaf:page rdf:resource="https://doi.org/10.5281/zenodo.2586591"/>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Schulz, Thorsten</foaf:name>
        <foaf:givenName>Thorsten</foaf:givenName>
        <foaf:familyName>Schulz</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>Universität Rostock</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Hohenegger, Andreas</foaf:name>
        <foaf:givenName>Andreas</foaf:givenName>
        <foaf:familyName>Hohenegger</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>atsec information security GmbH</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Persson, Staffan</foaf:name>
        <foaf:givenName>Staffan</foaf:givenName>
        <foaf:familyName>Persson</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>atsec information security GmbH</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Ortega, Alvaro</foaf:name>
        <foaf:givenName>Alvaro</foaf:givenName>
        <foaf:familyName>Ortega</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>Epoche and Espri SLU</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Hametner, Reinhard</foaf:name>
        <foaf:givenName>Reinhard</foaf:givenName>
        <foaf:familyName>Hametner</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>Thales Austria GmbH</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Paulitsch, Michael</foaf:name>
        <foaf:givenName>Michael</foaf:givenName>
        <foaf:familyName>Paulitsch</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>Thales Austria GmbH</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Gries, Caspar</foaf:name>
        <foaf:givenName>Caspar</foaf:givenName>
        <foaf:familyName>Gries</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>SYSGO AG</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Tverdyshev, Sergey</foaf:name>
        <foaf:givenName>Sergey</foaf:givenName>
        <foaf:familyName>Tverdyshev</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>SYSGO AG</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Blasum, Holger</foaf:name>
        <foaf:givenName>Holger</foaf:givenName>
        <foaf:familyName>Blasum</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>SYSGO AG</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:creator>
      <rdf:Description>
        <rdf:type rdf:resource="http://xmlns.com/foaf/0.1/Agent"/>
        <foaf:name>Tomáš, Kertis</foaf:name>
        <foaf:givenName>Kertis</foaf:givenName>
        <foaf:familyName>Tomáš</foaf:familyName>
        <org:memberOf>
          <foaf:Organization>
            <foaf:name>Unicontrols A.S.</foaf:name>
          </foaf:Organization>
        </org:memberOf>
      </rdf:Description>
    </dct:creator>
    <dct:title>Security testing framework: strategy and approach</dct:title>
    <dct:publisher>
      <foaf:Agent>
        <foaf:name>Zenodo</foaf:name>
      </foaf:Agent>
    </dct:publisher>
    <dct:issued rdf:datatype="http://www.w3.org/2001/XMLSchema#gYear">2017</dct:issued>
    <dcat:keyword>security framework</dcat:keyword>
    <dcat:keyword>security testing</dcat:keyword>
    <dcat:keyword>analysis</dcat:keyword>
    <dcat:keyword>fuzz-test methodology</dcat:keyword>
    <frapo:isFundedBy rdf:resource="info:eu-repo/grantAgreement/EC/H2020/731456/"/>
    <schema:funder>
      <foaf:Organization>
        <dct:identifier rdf:datatype="http://www.w3.org/2001/XMLSchema#string">10.13039/501100000780</dct:identifier>
        <foaf:name>European Commission</foaf:name>
      </foaf:Organization>
    </schema:funder>
    <dct:issued rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2017-09-29</dct:issued>
    <dct:language rdf:resource="http://publications.europa.eu/resource/authority/language/ENG"/>
    <owl:sameAs rdf:resource="https://zenodo.org/record/2586591"/>
    <adms:identifier>
      <adms:Identifier>
        <skos:notation rdf:datatype="http://www.w3.org/2001/XMLSchema#anyURI">https://zenodo.org/record/2586591</skos:notation>
        <adms:schemeAgency>url</adms:schemeAgency>
      </adms:Identifier>
    </adms:identifier>
    <dct:isVersionOf rdf:resource="https://doi.org/10.5281/zenodo.2586590"/>
    <dct:isPartOf rdf:resource="https://zenodo.org/communities/certmils"/>
    <dct:isPartOf rdf:resource="https://zenodo.org/communities/mils"/>
    <owl:versionInfo>1.0</owl:versionInfo>
    <dct:description>&lt;p&gt;This deliverable evaluates the state of the art in security testing techniques in relation to relevant industrial security standards. The research starts with a survey of non-industrial security frameworks and general identification of security vulnerabilities. We then have a look into the different testing contexts covered by Common Criteria requirements and IEC62443 standards and certification schemes. This is also brought into context with the certMILS application pilots and the applicability to testing of compositions as the fundamental architecture of a MILS system. Future work will focus on refining features of the testing framework for security testing of operating system components.The strategy for these activities is outlined in the third chapter, together with a short study of the technical feasibility.&lt;/p&gt;</dct:description>
    <dct:accessRights rdf:resource="http://publications.europa.eu/resource/authority/access-right/PUBLIC"/>
    <dct:accessRights>
      <dct:RightsStatement rdf:about="info:eu-repo/semantics/openAccess">
        <rdfs:label>Open Access</rdfs:label>
      </dct:RightsStatement>
    </dct:accessRights>
    <dcat:distribution>
      <dcat:Distribution>
        <dct:license rdf:resource="https://creativecommons.org/licenses/by/4.0/legalcode"/>
        <dcat:accessURL rdf:resource="https://doi.org/10.5281/zenodo.2586591"/>
      </dcat:Distribution>
    </dcat:distribution>
    <dcat:distribution>
      <dcat:Distribution>
        <dcat:accessURL rdf:resource="https://doi.org/10.5281/zenodo.2586591"/>
        <dcat:byteSize>1196822</dcat:byteSize>
        <dcat:downloadURL rdf:resource="https://zenodo.org/record/2586591/files/certMILS-D4.1-SecurityTesting-Framework-PU-M09.pdf"/>
        <dcat:mediaType>application/pdf</dcat:mediaType>
      </dcat:Distribution>
    </dcat:distribution>
  </rdf:Description>
  <foaf:Project rdf:about="info:eu-repo/grantAgreement/EC/H2020/731456/">
    <dct:identifier rdf:datatype="http://www.w3.org/2001/XMLSchema#string">731456</dct:identifier>
    <dct:title>Compositional security certification for medium- to high-assurance COTS-based systems in environments with emerging threats</dct:title>
    <frapo:isAwardedBy>
      <foaf:Organization>
        <dct:identifier rdf:datatype="http://www.w3.org/2001/XMLSchema#string">10.13039/501100000780</dct:identifier>
        <foaf:name>European Commission</foaf:name>
      </foaf:Organization>
    </frapo:isAwardedBy>
  </foaf:Project>
</rdf:RDF>
231
225
views
downloads
All versions This version
Views 231231
Downloads 225225
Data volume 269.3 MB269.3 MB
Unique views 217217
Unique downloads 206206

Share

Cite as