Latest revision as of 15:58, 21 October 2021

Vulnerability Assessment

@@ Line 1: / Line 1: @@
 {{svg-header}}
+{{DeprecatedAndMovedTo|new_location=https://ims.egi.eu/display/EGIG/Vulnerability+Assessment}}
-Vulnerability Assessment is the proactive examination of software in order to find vulnerabilities that may exist. This is carried out by some members of SVG from collaborating projects and partners.
-Assessment may be considered prior to allowing new software to be deployed on the EGI infrastructure to help minimize the introduction of new vulnerabilities
-== First Principles Vulnerability Assessment ==
-Members of the University of Wisconsin / Universitat Autònoma de Barcelona Middleware Security and Testing Group have developed First Principles Vulnerability Assessment techniques for assessing software for vulnerabilities and carried out assessments of several major middleware systems, found significant vulnerabilities in many of them, then helped the developers with remediation strategies. Assessing further packages is planned.
-Information on their work is available from the University of
-Wisconsin  [http://www.cs.wisc.edu/mist/includes/vuln.html Vulnerability Assessment] page
-== Other information ==
-For some earlier work see also EGEE/GridPP information at:
-* [https://archive.gridpp.ac.uk/gsvg/testing/index.html EGEE/GridPP Vulnerability Detection]