Please use this identifier to cite or link to this item:
https://dair.nps.edu/handle/123456789/1607
Title: | Automated Methods for Cyber Test and Evaluation |
Authors: | Valdis Berzins |
Keywords: | Cyber Test Mission-Critical Software Black-Box Testing Automated Testing Automated Analysis Cyber Risks |
Issue Date: | 30-Apr-2018 |
Publisher: | Acquisition Research Program |
Citation: | Published--Unlimited Distribution |
Series/Report no.: | Acquisition Management SYM-AM-18-091 |
Abstract: | Cyber security of mission-critical software is a relatively new concern that is difficult to measure and hence difficult to incorporate effectively in software development contracts. The DoD has typically relied on black-box approaches to software testing. However, cyber vulnerabilities, particularly those deliberately injected into systems, are often statistically invisible with respect to affordable levels of black-box testing, which implies that they cannot be effectively detected using conventional testing techniques. This motivates augmenting traditional testing approaches with additional types of test and analysis procedures. This paper explores application of automated testing and other automated analysis methods to reduce cyber risks. We analyze several types of undesirable software behaviors and identify automated methods that could detect them within practical limits on time and computational resources. |
Description: | Acquisition Management / Defense Acquisition Community Contributor |
URI: | https://dair.nps.edu/handle/123456789/1607 |
Appears in Collections: | Annual Acquisition Research Symposium Proceedings & Presentations |
Files in This Item:
File | Size | Format | |
---|---|---|---|
SYM-AM-18-091.pdf | 750.77 kB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.