Penetration Testing

Posted in Internet Security Whitepapers, Penetration Testing

0.0/5 rating (0 votes)

Near flawless penetration testing is a requirement for highrated secure systems — those rated above B1 based on the Trusted Computer System Evaluation Criteria (TCSEC) and its Trusted Network and Database Interpretations (TNI and TDI). Unlike security functional testing, which demonstrates correct behavior of the product’s advertised security controls, penetration testing is a form of stress testing which exposes weaknesses — that is, flaws — in the trusted computing base (TCB). This essay describes the Flaw Hypothesis Methodology (FHM), the earliest comprehensive and widely used method for conducting penetrations testing.
∙:∙ If you have trouble viewing this document, please click the link below!
Penetration Testing

Comments (0)

Leave a comment

Please login to leave a comment. Optional login below.