For what purposes is ST&E used?

Security Test and Evaluation (ST&E) is a component of risk assessment. It is useful in discovering system vulnerabilities. For what purposes is ST&E used?

Each correct answer represents a complete solution. Choose all that apply.

Security Test and Evaluation (ST&E) is a component of risk assessment. It is useful in discovering system vulnerabilities. For what purposes is ST&E used?

Each correct answer represents a complete solution. Choose all that apply.

A.
To implement the design of system architecture

B.
To determine the adequacy of security mechanisms, assurances, and other properties to enforce the security policy

C.
To assess the degree of consistency between the system documentation and its implement ation

D.
To uncover design, implementation, and operational flaws that may allow the violation of security policy



Leave a Reply 0

Your email address will not be published. Required fields are marked *