
Recent Posts
-
3rd International Workshop on Risk Assessment and Risk-Driven Testing
The program is now available for the 3rd International Workshop on Risk Assessment and Risk-Driven Testing, a one-day event that will be held in Berlin on the 15th of June. The event will have several talks from the RASEN project, to see the full agenda of the event please click here.
May 12, 2015 / rasen_adm / Comments Off
Read More » -
SASSI ’15
Mobile devices, industrial equipment and facilities, smart grids, and even vehicles are connected via the Internet and becoming accessible and thus vulnerable to security breaches and hacker attacks. Software that runs this kind of system is exposed to a large number of different threats that pose special requirements on the quality and robustness of the […]
April 8, 2015 / rasen_adm / Comments Off
Read More » -
AN INNOVATIVE MODELLING APPROACH FOR SOFTWARE COMPONENT TESTING AND RISK MANAGEMENT
Software AG has a vast solution portfolio to help companies in optimizing and modernizing existing technologies and achieve business results faster. Different software solutions belong to Software AG’s key competences like Adabas, the first high-performance transactional database, ARIS — the first business process analysis platform, the first B2B server, SOA-based integration platform, webMethods; and pioneering […]
April 7, 2015 / rasen_adm / Comments Off
Read More » -
Pattern-driven and Model-based Vulnerability Testing in RASEN
Related work on vulnerability detection can be classified into two complementary categories: Static and Dynamic Analysis Security Testing, respectively SAST and DAST for short. On the one hand, SAST are white-box approaches including source, byte and object code scanners and static analysis techniques. On the other hand, DAST include black-box Web application scanners, fuzzing techniques […]
March 23, 2015 / rasen_adm / Comments Off
Read More » -
CRSTIP Web Tool
Our questionnaire has been developed in the RASEN research project and allows to assess the maturity of your organization’s security assessment processes. We will aggregate your answers into a statistic which shows where your organization stands when compared with the baseline of the registered replies. The whole process takes around 10 minutes and the results […]
March 18, 2015 / rasen_adm / Comments Off
Read More » -
3rd International Workshop on Risk Assessment and Risk-Driven Testing (RISK) – Call for papers
The RASEN project is involved in the organization of the RISK 2015 work shop. The deadline for submitting a paper is 5th April 2015. The third international workshop on Risk Assessment and Risk-driven Testing (RISK) addresses systematic approaches that combine risk assessment and testing. We are interested in innovative techniques, tools and methods from industry or […]
March 11, 2015 / rasen_adm / Comments Off
Read More » -
RASEN Supports Standardization at the European Telecommunication Standards Institute
Within the RASEN project, we are aiming to develop methods, techniques and tools for risk-based security testing of large-scale networked systems. To accomplish the technical work and to boost the industrial applicability we have decided to make intensive use of standards covering the area security risk assessment and testing. Thus, the RASEN methodologies and the […]
March 3, 2015 / rasen_adm / Comments Off
Read More » -
Using Common Attack Pattern Enumeration (CAPEC) for Cyber Security Risk Assessment
CAPEC is a comprehensive dictionary and classification taxonomy of known security attacks developed by MITRE. The goal is to advance community understanding and defensive capabilities related to cyber security. RASEN has developed an approach for automatically generating a risk model from the CAPEC dictionary. This risk model can be used as a starting point for […]
February 24, 2015 / rasen_adm / Comments Off
Read More » -
RASEN General Assembly in Oslo
The next general assembly for the RASEN project will be hosted by SINTEF on February 4th and 5th in Oslo. The main topics of discussion will include upcoming technical work as well as preparing the second deployment of the RASEN methodology and tooling within the three industrial use cases. If you want to know more, […]
February 3, 2015 / rasen_adm / Comments Off
Read More » -
Three innovations from the RASEN Project
After two years of work on the RASEN project we outline the three most important achievements of our project. The scope of this article is to briefly introduce them and to provide information regarding related materials that are available on our website. RASEN tool-based methodology for risk based security testing and legal compliance The first RASEN […]
January 14, 2015 / rasen_adm / Comments Off
Read More »