- 论坛徽章:
- 0
|
OSSTMM: Open-source Security Testing Methodology Manual <开放原码安全测试方法学手册>由 ISECOM 编篡发布. 现有西班牙语, 法语, 日语, 德语以及荷兰语翻译项目在进行中, 都是义务人员. 经与ISECOM联系, 我准备承担翻译中文, 恰好在ISECOM的论坛遇到XOPAN, XOPAN已经参加义务翻译并着手准备工作. 该手册在IT安全领域颇受好评, 目前发布版本2.1, 并且2.5 和 3.0 在进行中.\r\n\r\n该手册英文约130页, 33000字. 请有意参加的各位朋友到ISECOM的网站注册, 并请注明愿承担翻译或审阅工作. 如上所述, 该项目为义务参加, 无报酬. 翻译完成的中译本将在ISECOM网站供免费下载, 也可以在国内网站发布, 但不可以印刷出版.\r\n\r\n注册可到:\r\nhttp://www.isecom.com/forum/viewtopic.php?t=41\r\n\r\n谢谢.\r\n\r\n<--QUOTE-->\r\nINSTITUTE FOR SECURITY AND OPEN METHODOLOGIES\r\n\r\nOSSTMM - Open Source Security Testing Methodology Manual by Pete Herzog\r\n\r\nThe Open Source Security Testing Methodology Manual (OSSTMM) is an open standard methodology for performing security tests. Since it’s inception in January 2001, the OSSTMM has become the most widely used, peer-reviewed, comprehensive security testing methodology in existence. While other methodologies and best practices attack security testing from a 50,000 foot view, the OSSTMM focuses on the technical details of exactly which items need to be tested, what to do during a security test, and when different types of security tests should be performed. The OSSTMM provides testing methodologies for the following six security areas: Information Security, Process Security, Internet Technology Security, Communications Security, Wireless Security, and Physical Security. \r\n\r\nISECOM is successful at achieving its goals with the OSSTMM do to the open development environment from which it was created. When you use an internal testing methodology, you leverage the brain trust of a handful of security experts. The OSSTMM is powerful because it provides the collective best practices, legal, and ethical concerns of the global security testing community.\r\n<--UNQUOTE--> |
|