Many of Information Security Systems (ISS) have been developed by using and embedding Open Source Software(OSS) such as OpenSSL. The "OSS-embedded ISS" should be tested and evaluated when it will be used as a security product or system for an organization. In this paper, we present a test and evaluation procedure for an OSS-embedded ISS, and ROSEM(real-time OpenSSL execution monitoring system) that is a testing tool in according to presented methodology. The main function of ROSEM such as an execution path generator for OpenSSL is useful for test case generation in the CC evaluation scheme. © Springer-Verlag Berlin Heidelberg 2005.
CITATION STYLE
Choi, S. J., Kang, Y. H., & Lee, G. S. (2005). A security evaluation and testing methodology for open source software embedded information security system. In Lecture Notes in Computer Science (Vol. 3481, pp. 215–224). Springer Verlag. https://doi.org/10.1007/11424826_23
Mendeley helps you to discover research relevant for your work.