A Classification Scheme for Cybersecurity Models

Atoum, Issa; Otoom, Ahmed

doi:10.14257/ijsia.2017.11.1.10

Cited by 8 publications

(6 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Paper [4] reports a generalized classification of software safety testing models. A criterion for assessing the effectiveness of testing has been proposed.…”

Section: The Aim and Objectives Of The Studymentioning

confidence: 99%

“…Transitions (1-3) and (2-3) correspond to the process of preparing test documentation and test control bench. Transition (3)(4) formalizes the process of pre-evaluation of the tested object (architecture, completeness of information, etc. ), as well as planning of the study.…”

Section: 2 Developing a Gert-network Scheme Of The Process To Prepare For Security Testingmentioning

confidence: 99%

“…where q 1 =1-p 1 , q 2 =1-p 2 , q 3 =1-p 3 are the probabilities of branch selection (1, 2), (2, 3), (3,4) in the scheme shown in Fig. 5, respectively.…”

Section: 3 Gert-network Of Source Code Verification Process For Cryptographic and Other Ways To Protect Datamentioning

confidence: 99%

“…to execute the testing preparation processThe polynomial rz 6 -yz5 -dz4 -hz 3 -xz 2 +cz+b generates seven poles. The solution to the following equation…”

mentioning

confidence: 99%

See 3 more Smart Citations

Development a mathematical model for the software security testing first stage

Semenov

Zhang

Weiling

et al. 2021

EEJET

View full text Add to dashboard Cite

This paper reports an analysis of the software (SW) safety testing techniques, as well as the models and methods for identifying vulnerabilities. An issue has been revealed related to the reasoned selection of modeling approaches at different stages of the software safety testing process and the identification of its vulnerabilities, which reduces the accuracy of the modeling results obtained. Two steps in the process of identifying software vulnerabilities have been identified. A mathematical model has been built for the process of preparing security testing, which differs from the known ones by a theoretically sound choice of the moment-generating functions when describing transitions from state to state. In addition, the mathematical model takes into consideration the capabilities and risks of the source code verification phase for cryptographic and other ways to protect data. These features generally improve the accuracy of modeling results and reduce input uncertainty in the second phase of software safety testing. An advanced security compliance algorithm has been developed, with a distinctive feature of the selection of laws and distribution parameters that describe individual state-to-state transitions for individual branches of Graphical Evaluation and Review Technique networks (GERT-networks). A GERT-network has been developed to prepare for security testing. A GERT-network for the process of checking the source code for cryptographic and other data protection methods has been developed. A graphic-analytical GERT model for the first phase of software safety testing has been developed. The expressions reported in this paper could be used to devise preliminary recommendations and possible ways to improve the effectiveness of software safety testing algorithms

show abstract

“…Paper [4] reports a generalized classification of software safety testing models. A criterion for assessing the effectiveness of testing has been proposed.…”

Section: The Aim and Objectives Of The Studymentioning

confidence: 99%

Section: 2 Developing a Gert-network Scheme Of The Process To Prepare For Security Testingmentioning

confidence: 99%

“…where q 1 =1-p 1 , q 2 =1-p 2 , q 3 =1-p 3 are the probabilities of branch selection (1, 2), (2, 3), (3,4) in the scheme shown in Fig. 5, respectively.…”

Section: 3 Gert-network Of Source Code Verification Process For Cryptographic and Other Ways To Protect Datamentioning

confidence: 99%

“…to execute the testing preparation processThe polynomial rz 6 -yz5 -dz4 -hz 3 -xz 2 +cz+b generates seven poles. The solution to the following equation…”

mentioning

confidence: 99%

See 2 more Smart Citations

Development a mathematical model for the software security testing first stage

Semenov

Zhang

Weiling

et al. 2021

EEJET

View full text Add to dashboard Cite

show abstract

“…Analysis of the literature has shown that at present there are various approaches to mathematical formalization and modeling of software security testing processes. These models are presented in works [1][2][3][4][5][6][7][8][9][13][14][15].…”

Section: Introductionmentioning

confidence: 99%

Testing Process for Penetration Into Computer Systems Mathematical Model Modification

Semenov

Weilin

2020

A.I.S.

View full text Add to dashboard Cite

Ab s t r a c t. Testing process for penetration into computer systems mathematical model was developed in the article. The proposed model differs from the known by computer systems specialized information platforms security testing capabilities, which made it possible to estimate the penetration test algorithm execution time falling within a given interval probability. The proposed testing process for penetration into computer systems mathematical model was further developed (modified). Modified model distinctive feature is the Erlang distribution as the main one in the state transition processes mathematical formalization. This made it possible on the one hand to unify the mathematical model and present the testing process at a higher level of the testing hierarchy, on the other hand to simplify it 1.7 times. A security testing mathematical model was developed in order to estimate the simulation results accuracy, based on the known GERT-networks simplification and modification approach. Testing algorithms execution time value mathematical expectation values are obtained and estimated. Comparative modeling results investigations have shown the study values comparability for all three approaches of security testing process mathematical formalization. This confirmed the hypothesis that it is advisable to use a unified mathematical formalization approach, which was implemented in a penetration testing process modified mathematical model. K e ywor d s : computer systems; Software; testing; mathematical model.

show abstract