View
40
Download
0
Category
Tags:
Preview:
DESCRIPTION
ETSI TC MTS, Security SIG in MTS (Methods for Testing and Specification). Jürgen Großmann, Fraunhofer FOKUS juergen.grossmann@fokus.fraunhofer.de. TR 101 583: Security Testing Case Studies -- Progress. Final draft for approval currently underway Document is ready for publication. - PowerPoint PPT Presentation
Citation preview
ETSI TC MTS, SECURITY SIG IN MTS (METHODS FOR
TESTING AND SPECIFICATION)
Jürgen Großmann, Fraunhofer FOKUSjuergen.grossmann@fokus.fraunhofer.de
TR 101 583: SECURITY TESTING CASE STUDIES -- Progress
Final draft for approval currently underwayDocument is ready for publication
Security SIG in MTS, 4-5 October 20112
EG 203 251: Risk-based Security Testing
Document Progress• Work plan produced• Initial draft structure provided• Sections on terms and concepts, risk-based security testing and test-based risk
assessment defined• Initial draft for: Risk-based security test planning, risk-based security test
design, risk-based security test selection
Open Issues• Feedback from Security SIG on initial draft required• Milan will provide feedback until next meeting.
Security SIG in MTS, 4-5 October 20113
EG 203 251: Security Assurance Lifecycle-- Progress
Document Progress• Work Plan produced and updated• Initial draft structure agreed, • Design section of LifeCycle drafted
Open Issues• Integration of information from other WI required (ongoing)• Discussing whether to have a joint WI with TC Cyber
TC CYBER are interested in collaborating over the LifeCycle Document in particular - I've promised to send them 0.0.5 once I've mad the changes.
Security SIG in MTS, 4-5 October 20114
TR 101 583: SECURITY TESTING TERMINOLOGY-- PROGRESS
Security SIG in MTS, 14th January 2014
received comments and additional sections: done integrate comments: donemove from TS -> TR: donereview by external experts: openclarify WI name with Emmanuelle New version until end of CW25Ian will sent comment to ARI
Move forward based on next MTS SIG meeting:• next draft: after next SIG conference call (June 2014)• for approval: following MTS meeting (October 2014)
NEXT STEPS
Jürgen will distribute the document to the SIG ISO document on security testing Discussion relation to TC Cyber, report from Ian, identify synergiesAri will provide a new version of SecTestTerms at the end of CW25JGR to check with Emm for liaison statement with ISO WG 27 (e.g. requesting comments on SecTestCases and SecTestTerms)JAN check deadlines for liaison statement with respect to ISO Mexico meeting.Next meeting Friday, June 27th, 2 pm
Recommended