Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "SVG:Vulnerability Assessment"

From EGIWiki
Jump to navigation Jump to search
Line 3: Line 3:




Vulnerability Assessment is the proactive examination of software in order to find vulnerabilities that may exist. This is carried out by some members of SVG from collaborating projects and partners. 
Vulnerability Assessment is the proactive examination of software in order to find vulnerabilities that may exist. While this work is no longer being carried out by EGI members work is continuting


== First Principles Vulnerability Assessment ==
== First Principles Vulnerability Assessment ==
Line 9: Line 9:
Members of the University of Wisconsin / Universitat Autònoma de Barcelona Middleware Security and Testing Group have developed First Principles Vulnerability Assessment techniques for assessing software for vulnerabilities and carried out assessments of several major middleware systems, found significant vulnerabilities in many of them, then helped the developers with remediation strategies. Assessing further packages is planned.
Members of the University of Wisconsin / Universitat Autònoma de Barcelona Middleware Security and Testing Group have developed First Principles Vulnerability Assessment techniques for assessing software for vulnerabilities and carried out assessments of several major middleware systems, found significant vulnerabilities in many of them, then helped the developers with remediation strategies. Assessing further packages is planned.


Information on their work is available from the University of  
 
Wisconsin  [http://www.cs.wisc.edu/mist/includes/vuln.html Vulnerability Assessment] page
Some of this work is continuing at the University of Wisconsin  [https://research.cs.wisc.edu/mist/ https://research.cs.wisc.edu/mist/]


A vulnerability assessment of singularity has been carried out and the report made available in February 2020 - see [http://hdl.handle.net/2142/104612 http://hdl.handle.net/2142/104612]
A vulnerability assessment of singularity has been carried out and the report made available in February 2020 - see [http://hdl.handle.net/2142/104612 http://hdl.handle.net/2142/104612]
Some of their work and related security topics is reported at  [ https://www.ideals.illinois.edu/handle/2142/98549 https://www.ideals.illinois.edu/handle/2142/98549 ]


== Other information ==
== Other information ==

Revision as of 12:54, 22 June 2020

Main page Software Security Checklist Issue Handling Advisories Notes On Risk Advisory Template More

Vulnerability Assessment



Vulnerability Assessment is the proactive examination of software in order to find vulnerabilities that may exist. While this work is no longer being carried out by EGI members work is continuting

First Principles Vulnerability Assessment

Members of the University of Wisconsin / Universitat Autònoma de Barcelona Middleware Security and Testing Group have developed First Principles Vulnerability Assessment techniques for assessing software for vulnerabilities and carried out assessments of several major middleware systems, found significant vulnerabilities in many of them, then helped the developers with remediation strategies. Assessing further packages is planned.


Some of this work is continuing at the University of Wisconsin https://research.cs.wisc.edu/mist/

A vulnerability assessment of singularity has been carried out and the report made available in February 2020 - see http://hdl.handle.net/2142/104612

Some of their work and related security topics is reported at [ https://www.ideals.illinois.edu/handle/2142/98549 https://www.ideals.illinois.edu/handle/2142/98549 ]

Other information

For some earlier work see also EGEE/GridPP information at: