Table 1 Study on risk-based security testing
From: Risk-driven security testing using risk analysis with threat modeling approach
Sl. no. | Title | Year | Techniques | Metrics | Systems/models used |
|---|---|---|---|---|---|
1 | Risk-driven Security Testing versus Test-driven Security Risk Analysis | Feb 15, 2012 | Risk-driven security testing and Test-driven security risk analysis | Confidentiality, Integrity, Availability and Accountability. | Industrial Case Study |
2 | Baseline for Compositional Test-Based Security Risk Assessment | Jan 31, 2013 | Table based risk assessment technique | Risk identification, Risk Analysis, Risk Evaluation and Risk Treatment | Common Vulnerability Scoring system |
3 | Baseline for Compositional Risk-Based | Jan 31, 2013 | Risk-based vulnerability testing | Severity, Testability, Uncertainty, reusability | Scalable network system |
| Â | Security Testing | Â | Â | Â | Â |
4 | Risk-based Statistical Testing: A Refinement based | May 2009 | Model-based statistical testing, Markov chain test models | Safety Integrity Level (SIL) | Critical systems like fire alarm, railway control system |
| Â | Approach to the Reliability Analysis of Safety-Critical Systems | Â | Â | Â | Â |
5 | Effort-dependent technologies for multi-domain risk-based security testing | Sept 27, 2010 | Light weight risk and security testing | Proof-of-Performance, Proof-of-Concept, Proof-of-Existence | Security Audit of Supplier services, Maintaining security in virtual organization |