The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.
Difference between revisions of "SVG:Vulnerability Assessment"
| Line 5: | Line 5: | ||
Vulnerability Assessment is the proactive examination of software in order to find vulnerabilities that may exist. This is carried out by some members of SVG from collaborating projects and partners. | Vulnerability Assessment is the proactive examination of software in order to find vulnerabilities that may exist. This is carried out by some members of SVG from collaborating projects and partners. | ||
Assessment may be considered prior to allowing new software to be deployed on the EGI infrastructure to help minimize the introduction of new vulnerabilities | Assessment may be considered prior to allowing new software to be deployed on the EGI infrastructure to help minimize the introduction of new vulnerabilities | ||
== | |||
Members of the University of Wisconsin / Universitat Autònoma de Barcelona Middleware Security and Testing Group have developed their own techniques for assessing software for vulnerabilities and carried out assessments of several major middleware systems, found significant vulnerabilities in many of them, then helped the developers with remediation strategies. Assessing further packages is planned. | |||
See also EGEE/GridPP information at: | See also EGEE/GridPP information at: | ||
* [http://www.gridpp.ac.uk/gsvg/testing/index.html EGEE/GridPP Vulnerability Detection] | * [http://www.gridpp.ac.uk/gsvg/testing/index.html EGEE/GridPP Vulnerability Detection] | ||
Revision as of 16:18, 3 November 2010
| Main page | Software Security Checklist | Issue Handling | Advisories | Notes On Risk | Advisory Template | More |
Vulnerability Assessment
 This page is under construction.
|
Vulnerability Assessment is the proactive examination of software in order to find vulnerabilities that may exist. This is carried out by some members of SVG from collaborating projects and partners.
Assessment may be considered prior to allowing new software to be deployed on the EGI infrastructure to help minimize the introduction of new vulnerabilities
==
Members of the University of Wisconsin / Universitat Autònoma de Barcelona Middleware Security and Testing Group have developed their own techniques for assessing software for vulnerabilities and carried out assessments of several major middleware systems, found significant vulnerabilities in many of them, then helped the developers with remediation strategies. Assessing further packages is planned.
See also EGEE/GridPP information at: