CN102495731B - Generation method of embodiment for information safety evaluation - Google Patents
Generation method of embodiment for information safety evaluation Download PDFInfo
- Publication number
- CN102495731B CN102495731B CN201110397550.8A CN201110397550A CN102495731B CN 102495731 B CN102495731 B CN 102495731B CN 201110397550 A CN201110397550 A CN 201110397550A CN 102495731 B CN102495731 B CN 102495731B
- Authority
- CN
- China
- Prior art keywords
- testing
- assessment
- case
- project
- type
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Abstract
The invention provides a generation method of an embodiment for information safety evaluation, which includes storing safety evaluation contents each evaluative criteria corresponds to; respectively forming evaluation use case templates of different industry types and business types; selecting a corresponding evaluation use case template according to the business type and the industry type of a project to be evaluated to construct an evaluation use case embodiment of the project to be evaluated; and selecting a test method according to the evaluation use case embodiment and a test object in the project to be evaluated to generate a test use case embodiment. Each evaluation use case template comprises safety evaluation contents corresponding to the evaluative criteria included by the industry types and the business types and the test methods the safety evaluation contents correspond to. The generation method is capable of simply, conveniently, flexibly, standardly, systematically generating the embodiment in the information safety evaluation field.
Description
Technical field
The present invention relates to information security field, refer more particularly to a kind of enforcement case generation method of Information Security Evaluation.
Background technology
At present, the system security assessment in information security field is generally according to concerned countries Information Security Evaluation standard in actual operating process, adopts taking manual operation as main mode and implements.Therefore each evaluation item can, because enforcement personnel's difference is with strong individualized feature, cause under identical standard, and the enforcement regular meeting of finally assessing use is also different, the difficult quality guarantee of assessment.
The existing evaluating system taking computing machine as platform provides a database of preserving a large amount of test cases conventionally, calls corresponding test case in the time of actual assessment; And in the assessment of information security field, situation is comparatively complicated and changeable, evaluation criteria, industry type, application scenarios, system object type are various, and the situation of the actual assessment project being combined by it is varied especially; If indiscriminately imitate the thought of organizing in conventional test case data storehouse, design respectively a set of enforcement use-case for the system security assessment project of dissimilar feature, enforcement use-case quantity size in final data storehouse will be very huge so, and still likely cannot contain all types of evaluation items; In the time there is new standard or new sector application, all need again to write dependence test use-case in addition, work very complicated, easily make mistakes, the dirigibility of application and extendability are all poor.Therefore existingly cannot well be applicable to information security field based on computer implemented evaluating system.
Summary of the invention
The technical problem to be solved in the present invention is how easy in Information Security Evaluation field, flexible, specification, systematically automatically generates and implement use-case, comprises assessment use-case example and associated test case example.
In order to address the above problem, the invention provides a kind of generation method of enforcement use-case of Information Security Evaluation, comprising:
Preserve every evaluation criteria, wherein, described every evaluation criteria comprises each self-corresponding safety assessment content;
Form respectively the assessment use-case template of different industries type and type of service; Safety assessment content corresponding to every evaluation criteria that under described assessment use-case template comprises, industry type and type of service comprise, and the corresponding method of testing of each safety assessment content;
Select corresponding assessment use-case template according to the type of service of project to be assessed, industry type, construct the assessment use-case example of this project to be assessed;
According to the assessment use-case example of this project to be assessed, and tested object in this project to be assessed is selected method of testing, generating test use case example.
Further, corresponding every evaluation criteria safety assessment content is saved as to Information Security Standard storehouse.
Further, according to the stratification incidence relation of evaluation criteria, in Information Security Standard storehouse, set up hierarchical logic, under standard, comprise multiple classes, each class comprises multiple subclasses, each subclass comprises multiple assemblies, and assembly can also be decomposed into multiple leading elements, and each leading element is corresponding with method of testing.
Further, also comprise after forming respectively the step of assessment use-case template of different industries type and type of service:
The assessment use-case template of formation is saved as to assessment use-case template base.
Further, before the step of the described assessment use-case template that forms respectively different industries type and type of service, also comprise:
Preserve the corresponding method of testing of each safety assessment content;
In the time forming assessment use-case template, set up safety assessment content and the method for testing of preserving between incidence relation.
Further, the corresponding method of testing of each safety assessment content is saved as to method of testing storehouse; The determinant attribute in method of testing storehouse comprises: method of testing title, method of testing content description, tested object, means of testing.
Further, method of testing storehouse comprises multiple method of testings, and each method of testing is corresponding to a method of testing content description, corresponding to the combination of one or more means of testing and tested object.
Further, the combination of means of testing and tested object saves as the form of two tuples;
A tested object has one or more means of testing, and a kind of means of testing is used for testing one or more tested objects.
Further, before the step of the assessment use-case example of described structure project to be assessed, also comprise:
Obtain the basic data of project to be assessed, comprise type of service, industry type, tested object.
Further, according to the assessment use-case example of this project to be assessed, and tested object in this project to be assessed selects method of testing, and the step of generating test use case example specifically can comprise:
According to the assets information of project to be assessed, the method for testing set comprising from the assessment use-case example of this project to be assessed, filter out the method for testing that tested object mates with the Asset Type in assets information;
In the method for testing filtering out, to classify according to means of testing, merger is multiple test case examples.
By method provided by the invention, can set up the software implementation framework of a kind of standardization, robotization, Componentized general information security implementation use-case (comprising assessment use-case example and test case example associated therewith) generation, mission planning and assessment data collection, Macro or mass analysis, thereby support similar Information Security Evaluation activity can code requirement, consistent assessment requirement and implementation method, carry out efficiently, thus data acquisition efficiency and the analysis and assessment effect of raising evaluation work.Method provided by the invention, can also expand in other assessment activities based on particular implementation standard, thereby strengthens standardization and the consistance of correlated activation, improves evaluation effect, improves assess effectiveness, improves the automatic management level of evaluation item.
Brief description of the drawings
Fig. 1 is the process flow diagram of the generation method of the enforcement use-case of the Information Security Evaluation of embodiment mono-;
Fig. 2 is the data hierarchy graph of a relation in Information Security Standard storehouse in embodiment mono-;
Fig. 3 is the building-block of logic in method of testing storehouse in embodiment mono-;
Fig. 4 is general data entity relationship and the processing logic schematic diagram in first example of embodiment mono-;
Fig. 5 is in second example of embodiment mono-, the product process figure of assessment use-case example and test case example.
Embodiment
Below in conjunction with drawings and Examples, technical scheme of the present invention is described in detail.
It should be noted that, if do not conflicted, each feature in the embodiment of the present invention and embodiment can mutually combine, all within protection scope of the present invention.In addition, although there is shown logical order in flow process, in some cases, can carry out shown or described step with the order being different from herein.
The definition of several terms that paper once relates to herein:
Assessment use-case example is the framework of the specific works content of assessment business.
Test case example is the content measurement description that need to carry out in order to complete the every concrete safety assessment content of assessment use-case example.
Implement use-case, assessment use-case example and test case example associated therewith form implements use-case.
Evaluation object, refers to and the objective for implementation of evaluation item wherein generally comprises a series of assets.
The generation method of the enforcement use-case of embodiment mono-, a kind of Information Security Evaluation, process as shown in Figure 1, comprising:
Preserve every evaluation criteria, wherein, described every evaluation criteria comprises each self-corresponding safety assessment content;
Form respectively the assessment use-case template of different industries type and type of service; Safety assessment content corresponding to every evaluation criteria that under described assessment use-case template comprises, industry type and type of service comprise, and the corresponding method of testing of each safety assessment content;
Select corresponding assessment use-case template according to the type of service of project to be assessed, industry type, construct the assessment use-case example of this project to be assessed;
According to the assessment use-case example of this project to be assessed, and tested object in this project to be assessed is selected method of testing, generating test use case example.
The enforcement use-case example that the present embodiment generates has intactly been contained the test case example collection that all assessment detailed rules and regulations of this evaluation item needs need to be carried out.Just can ensure various data complete, that systematically gather and take back evaluation item needs by carrying out the test case example generating; The data of taking back by test case example, to the data backfill of assessment use-case example, can be set up the evidence data acquisition of safety assessment content, to support follow-up safety assessment analysis.
In the present embodiment, while preserving every evaluation criteria, can be, but not limited to save as Information Security Standard storehouse, when practical application, also can save as other form; Evaluation criteria is the basic foundation of carrying out safety assessment.Type has determined the type of service of safety assessment project, safety assessment content depends on the choice that evaluation criteria is required to content, therefore the foundation in Information Security Standard storehouse, need can careful parsing standard content, and can in assessment activity, be suitable for easily the combination of content.
In the present embodiment, all there is the general characteristic of stratification incidence relation according to the detailed content of evaluation criteria, can carry out to the content of standard the segmentation step by step of unification according to the level of class, subclass, establishment, element, in Information Security Standard storehouse, set up corresponding hierarchical logic as shown in Figure 2; Under standard, comprise multiple classes, each class comprises multiple subclasses, and each subclass comprises multiple assemblies, and assembly can also be decomposed into multiple leading elements.
The segmentation criterion in Information Security Standard storehouse is referred to as element, is basic test and appraisal assembly unit, and each leading element all has method of testing in contrast should.
In the present embodiment, can further include after forming respectively the assessment use-case template of different industries type and type of service:
The assessment use-case template of formation is saved as to assessment use-case template base.
Visible, assessment use-case template base comprises a series of assessment use-case template, is the feature according to different industries, the set of the applicable evaluation criteria detailed rules and regulations of setting up targetedly.
In the present embodiment, the body data logic of assessment use-case template base is equal to the data hierarchy logic in Information Security Standard storehouse substantially.The same hierarchical logic that adopts class, subclass, assembly, element builds.
The assessment use-case template base of the present embodiment, under the framework of the mathematical logic in Information Security Standard storehouse, has further been set up the incidence relation between each leading element and method of testing, and a leading element can be corresponding to one or more method of testings.
In the present embodiment, before the step of the described assessment use-case template that forms respectively different industries type and type of service, can also comprise:
Preserve the corresponding method of testing of each safety assessment content;
In the time forming assessment use-case template, set up safety assessment content and the method for testing of preserving between incidence relation.
When preservation, can be, but not limited to save as method of testing storehouse, when practical application, also can save as other form; The relevant determinant attribute in method of testing storehouse mainly comprises: method of testing title, method of testing content description, tested object, means of testing.
The logical organization in the method for testing storehouse in the present embodiment can be as shown in Figure 3.Method of testing storehouse comprises multiple method of testings; Such as the method for testing 1 in Fig. 3 ..., method of testing M, according to concrete technical characterstic, each method of testing, can be corresponding to the combination of one or more means of testing and tested object corresponding to a method of testing content description.Wherein, the combination of means of testing and tested object can be, but not limited to save as the form of two tuples, such as two tuples 1 in Fig. 3 ..., two tuple N; In the method for testing storehouse of the present embodiment, the mapping relations of method of testing and two tuples are one-to-manies.
In the method for testing storehouse of the present embodiment, comprise multiple means of testing, such as the means of testing 1 in Fig. 3 ..., means of testing n, also comprise multiple tested object, such as the tested object 1 in Fig. 3 ..., tested object m; A tested object can have one or more means of testing, and a kind of means of testing can be for testing one or more tested objects.
Describe with an example below.In this example, method of testing storehouse comprises tested object as shown in Table 1, comprises means of testing as shown in Table 2.
Table one, tested object
| Sequence number | Tested object classification |
| 1 | The network equipment |
| 2 | Operating system |
| 3 | Database |
| 4 | Application service |
| 5 | Operation system |
| 6 | Physical environment |
| 7 | Document |
| 8 | Personnel |
| 9 | Data |
Table two, means of testing
| Sequence number | Means of testing classification |
| 1 | Vulnerability scanning |
| 2 | Penetration testing |
| 3 | Forensics analysis |
| 4 | Control desk audit |
| 5 | Applied in network performance test |
| 6 | Personnel's interview |
| 7 | Document examination |
| 8 | Field observation |
Can think, the present embodiment is the mapping relations (also having man-to-man situation but do not get rid of) of the one-to-many between method of testing set up and preserved Information Security Standard storehouse Plays element and method of testing storehouse in assessment use-case template base in.
In the present embodiment, before the step of the assessment use-case example of described structure project to be assessed, can also comprise:
Obtain the basic data of project to be assessed, as shown in Table 3, comprise type of service, industry type, tested object; Wherein tested object can show as the detailed assets information of project; Basic data can also comprise application characteristic in addition, and this is general application descriptor.
The basic data of table three, project to be assessed
Above-mentioned information is in supporting to carry out a goal analysis and planning, for having supported the structure of assessment use-case example and test case example.
In the present embodiment, the generation of assessment use-case example, be according to the type of service of evaluation item and corresponding industry type, selected suitable assessment use-case template; On this basis, can also safety assessment content wherein be adjusted as required or be cut out, generate assessment use-case example.Assessment use-case example has determined the assessment content frame of an evaluation item.
Can find out, while there is new standard, only need to increase standard content,-and optionally suitably supplement the content in method of testing storehouse, set up the incidence relation of method of testing in new standard content and method of testing storehouse (can comprise newly-increased with original method of testing), can set up the assessment use-case template of new standard; In the time there is new industry type or application scenarios type, utilize the safety assessment use-case template of having preserved to form new assessment use-case template.Adopt this technology, strengthened evaluation capacity extensibility, facilitated the accumulation of evaluate knowledge, improved the utilization ratio of evaluate knowledge.
In the present embodiment, according to the assessment use-case example of this project to be assessed, and tested object in this project to be assessed selects method of testing, and the step of generating test use case example specifically can comprise:
According to the assets information of project to be assessed, the method for testing set comprising from the assessment use-case example of this project to be assessed, filter out the method for testing that its tested object mates with the Asset Type in assets information;
In the method for testing filtering out, to classify according to means of testing, tested object, merger is multiple test case examples.
In the data correlation relation of assessment use-case example, the incidence relation of the method for testing that has comprised needs, this relation is in order to determine the set of the applicable method of testing of this project implementation data acquisition; And whether each method of testing in this method of testing set is really suitable for, depend in the evaluation object of project, whether exist and this method of testing in the assets of correlation type of tested object coupling.Therefore, the first step processing of generating test use case is " determining effective test case set ".The set side that above-mentioned method of testing set obtains after the categorical filtering under each assets in evaluation object is final effectively test case set.
The application of test case example, be generally according to on-the-spot test required take the classification of means of testing, tested object divide the work tissue, such as in risk assessment project, carry out host computer system to carry out control desk audit, be exactly that fixing special messenger implements.Therefore, the second step processing of generating test use case example is test case instantiation, task is: according to the engine request of field conduct test, test case set is arranged according to means of testing classification, merger is for convenience of the test case example of relevant test implementation librarian use.
The implementation process of an object lesson of the present embodiment as shown in Figure 4, is first carried out basic data construction phase, sets up three databases as shown in Fig. 4 dotted line top.
Wherein, in Information Security Standard storehouse, preserve the evaluation criteria that every profession and trade type and type of service comprise, comprise the standard detailed rules and regulations of each evaluation criteria, and multinomial safety assessment content in each standard detailed rules and regulations.
In method of testing storehouse, preserve each method of testing, the combination of the corresponding method of testing content description of each method of testing (being the content measurement in Fig. 4) and one or more means of testing and tested object.
In assessment use-case template base, preserve the assessment use-case template of every profession and trade; In an assessment use-case template, comprise from standard detailed rules and regulations and the safety assessment content corresponding to industry type and type of service in Information Security Standard storehouse, also comprise the mapping relations of one or more method of testings in each safety assessment content and method of testing storehouse.
Assessment use-case template base just can be used in the evaluate application stage after having set up; As shown in dotted line below in Fig. 4, start after safety assessment, know industry type and the type of service of project to be assessed according to the Back ground Information of project, then in assessment use-case template base, choose accordingly the assessment use-case template of coupling, form the assessment use-case example of this project to be assessed; Then in the method for testing of the assessment use-case example association forming, select tested object and the method for testing that the Asset Type in assets information in project asset table to be assessed mates, from method of testing storehouse, obtain the set of selected method of testing generating test use case; Finally, according to means of testing and in conjunction with tested object classification, test case set is divided into groups to obtain test case example corresponding to this project to be assessed again.
Finally use assessment use-case example and test case example just can carry out safety assessment to project, namely implement use-case application, specifically how applying can be with reference to existing evaluation scheme; Obtain after backfill data, based on test case example and the mapping relations of assessing each standard detailed rules and regulations in use-case example, backfill data can be automatically associated in relevant standard detailed rules and regulations, thereby support assessment personnel carry out comprehensively, writing the integration test result of corresponding standard detailed rules and regulations to various basic test information; So far, safety assessment finishes.
In another object lesson of the present embodiment, the process of the generation of assessment use-case example and test case example as shown in Figure 5, comprising:
First, according to the type of service in the Back ground Information of project to be assessed and industry type, select assessment use-case template from assessment use-case template base, structure assessment use-case example is also preserved.
Then extract the assessment use-case example of preserving, the list of the relevant method of testing that comprises (means of testing, tested object) two tuples in structure safety assessment contents list and method of testing storehouse.
Withdrawal of assets information from the Back ground Information of project to be assessed, sets up and preserves the method for testing of safety assessment relevance in assessment use-case example and the relationship map of actual tested object (being assets in this example);
In filtering assessment use-case example, without the method for testing of corresponding tested object (being assets), according to means of testing and in conjunction with tested object classification, to method of testing, set is divided into groups again;
Again the test case example obtaining after dividing into groups is kept in test case case library; Finish.
Based on test case example and the mapping relations of assessing each assessment detailed rules and regulations in use-case example, backfill data in multiple test case example, can be automatically associated in relevant assessment detailed rules and regulations, thereby support assessment personnel carry out comprehensively, writing the integration test result of corresponding assessment detailed rules and regulations to various basic test information.
Certainly; the present invention also can have other various embodiments; in the situation that not deviating from spirit of the present invention and essence thereof; those of ordinary skill in the art are when making according to the present invention various corresponding changes and distortion, but these corresponding changes and distortion all should belong to the protection domain of claim of the present invention.
Claims (8)
1. a generation method for the enforcement use-case of Information Security Evaluation, comprising:
Preserve every evaluation criteria, wherein, described every evaluation criteria comprises each self-corresponding safety assessment content;
Form respectively the assessment use-case template of different industries type and type of service; Safety assessment content corresponding to every evaluation criteria that under described assessment use-case template comprises, industry type and type of service comprise, and the corresponding method of testing of each safety assessment content;
Select corresponding assessment use-case template according to the type of service of project to be assessed, industry type, construct the assessment use-case example of this project to be assessed;
According to the assessment use-case example of this project to be assessed, and tested object in this project to be assessed is selected method of testing, generating test use case example;
Described assessment use-case example is the framework of the specific works content of assessment business; Described test case example is the content measurement description that need to carry out in order to complete the every concrete safety assessment content of described assessment use-case example; Described assessment use-case example and described test case example associated therewith form described enforcement use-case; Before the step of the assessment use-case example of described structure project to be assessed, also comprise: obtain the basic data of project to be assessed, comprise type of service, industry type, tested object;
According to the assessment use-case example of this project to be assessed, and tested object in this project to be assessed selects method of testing, and the step of generating test use case example specifically comprises:
According to the assets information of described project to be assessed, the method for testing set comprising from the assessment use-case example of described project to be assessed, filter out the method for testing that its tested object mates with the Asset Type in assets information;
In the described method of testing filtering out, to classify according to means of testing, merger is multiple test case examples.
2. the method for claim 1, is characterized in that:
Corresponding every evaluation criteria safety assessment content is saved as to Information Security Standard storehouse.
3. method as claimed in claim 2, is characterized in that:
According to the stratification incidence relation of evaluation criteria, in Information Security Standard storehouse, set up hierarchical logic, under standard, comprise multiple classes, each class comprises multiple subclasses, each subclass comprises multiple assemblies, and assembly is also decomposed into multiple leading elements, and each leading element is corresponding with method of testing.
4. method as claimed in claim 3, is characterized in that, also comprises after forming respectively the step of assessment use-case template of different industries type and type of service:
The assessment use-case template of formation is saved as to assessment use-case template base.
5. method as claimed in claim 4, is characterized in that, before the step of the described assessment use-case template that forms respectively different industries type and type of service, also comprises:
Preserve the corresponding method of testing of each safety assessment content;
In the time forming assessment use-case template, set up safety assessment content and the method for testing of preserving between incidence relation.
6. method as claimed in claim 5, is characterized in that:
The corresponding method of testing of each safety assessment content is saved as to method of testing storehouse; The determinant attribute in method of testing storehouse comprises: method of testing title, method of testing content description, tested object, means of testing.
7. method as claimed in claim 6, is characterized in that:
Method of testing storehouse comprises multiple method of testings, and each method of testing is corresponding to a method of testing content description, corresponding to the combination of one or more means of testing and tested object.
8. method as claimed in claim 7, is characterized in that:
The combination of means of testing and tested object saves as the form of two tuples;
A tested object has one or more means of testing, and a kind of means of testing is used for testing one or more tested objects.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110397550.8A CN102495731B (en) | 2011-12-02 | 2011-12-02 | Generation method of embodiment for information safety evaluation |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110397550.8A CN102495731B (en) | 2011-12-02 | 2011-12-02 | Generation method of embodiment for information safety evaluation |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102495731A CN102495731A (en) | 2012-06-13 |
| CN102495731B true CN102495731B (en) | 2014-12-10 |
Family
ID=46187559
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110397550.8A Expired - Fee Related CN102495731B (en) | 2011-12-02 | 2011-12-02 | Generation method of embodiment for information safety evaluation |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102495731B (en) |
Families Citing this family (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104331366A (en) * | 2014-10-30 | 2015-02-04 | 北京思特奇信息技术股份有限公司 | Test case design efficiency promotion method and system |
| CN106845257A (en) * | 2017-02-09 | 2017-06-13 | 北京启明星辰信息安全技术有限公司 | One kind etc. is protected analysis method and waits guarantor's analysis system |
| CN107783901B (en) * | 2017-09-26 | 2020-05-12 | 深圳市牛鼎丰科技有限公司 | Test case generation method and device, computer equipment and storage medium |
| CN108629682A (en) * | 2018-05-07 | 2018-10-09 | 平安普惠企业管理有限公司 | User's financial risks appraisal procedure, device, equipment and readable storage medium storing program for executing |
| CN109598334B (en) * | 2018-12-03 | 2021-06-29 | 中国信息安全测评中心 | Sample generation method and device |
| CN111178753B (en) * | 2019-12-27 | 2023-04-21 | 重庆大学 | Information service-oriented security capability level grading evaluation method |
| CN112949176B (en) * | 2021-02-28 | 2023-06-13 | 杭州翔毅科技有限公司 | Artificial intelligence industry standard test evaluation method |
| CN113419961A (en) * | 2021-07-09 | 2021-09-21 | 平安国际智慧城市科技股份有限公司 | Method, device, equipment and storage medium for establishing case library for business test |
| CN113742222B (en) * | 2021-08-20 | 2024-04-09 | 河南源网荷储电气研究院有限公司 | Automatic generation method and test method for server communication test cases |
| CN114884705A (en) * | 2022-04-22 | 2022-08-09 | 方圆标志认证集团浙江有限公司 | Method and system for generating implementation case for information security assessment |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101339534A (en) * | 2008-06-17 | 2009-01-07 | 金蝶软件(中国)有限公司 | Software test apparatus and test method |
| CN101562535A (en) * | 2009-05-22 | 2009-10-21 | 公安部第三研究所 | Closed loop type information system security class assessment tool |
| CN102103540A (en) * | 2011-03-23 | 2011-06-22 | 镇江睿泰信息科技有限公司 | Cloud test device and method for general software system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060265691A1 (en) * | 2005-05-20 | 2006-11-23 | Business Machines Corporation | System and method for generating test cases |
-
2011
- 2011-12-02 CN CN201110397550.8A patent/CN102495731B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101339534A (en) * | 2008-06-17 | 2009-01-07 | 金蝶软件(中国)有限公司 | Software test apparatus and test method |
| CN101562535A (en) * | 2009-05-22 | 2009-10-21 | 公安部第三研究所 | Closed loop type information system security class assessment tool |
| CN102103540A (en) * | 2011-03-23 | 2011-06-22 | 镇江睿泰信息科技有限公司 | Cloud test device and method for general software system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102495731A (en) | 2012-06-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102495731B (en) | Generation method of embodiment for information safety evaluation | |
| Sandusky et al. | Bug Report Networks: Varieties, Strategies, and Impacts in a F/OSS Development Community. | |
| US20090204517A1 (en) | Intercompany accounting data analytics | |
| US20090055382A1 (en) | Automatic Peer Group Formation for Benchmarking | |
| Anza et al. | Developing E-government maturity framework based on COBIT 5 and implementing in city level: Case study Depok city and South Tangerang city | |
| Vuko et al. | Controlling and business efficiency | |
| Solemon et al. | Requirements engineering problems and practices in software companies: An industrial survey | |
| York et al. | What do we know about the stewardship gap | |
| CN107480188B (en) | Audit service data processing method and computer equipment | |
| Putra | Effect Of Placement And Work Environment On Work Discipline And Their Impact On Performance Of Employee Office Jati Karya Village, Binjai City | |
| Sen et al. | Intellectual Capital Disclosure of Select Pharmaceutical and Software Companies in India. | |
| Almomani et al. | Software process improvement initiatives in small and medium firms: a systematic review | |
| Kronenfeld | Validating the historical record: a relative distance test and correction formula for selection bias in presettlement land surveys | |
| CN110298595B (en) | Multidimensional talent assessment method and system | |
| Volk et al. | How much is Big Data? A Classification Framework for IT Projects and Technologies. | |
| Outmazgin | Exploring workaround situations in business processes | |
| Galeitzke et al. | Sustainability strategies in german small and medium-sized companies | |
| Paixão et al. | Mapping perceptions about the influence of critical success factors in BPM initiatives | |
| Carrizo | Comparison of research and practice regarding what we mean by" the right software requirements elicitation technique" | |
| US20130339372A1 (en) | System and method for contexual ranking of information facets | |
| Haav et al. | Business process mining in warehouses: A case study | |
| NH et al. | Development of global soil information facilities | |
| Shah | User satisfaction level of SCEE NUST Library from library services quality | |
| Radityohutomo et al. | Implementation of Genetic Process Mining to Support Information System Audit | |
| Cui et al. | User Behavior Auditing in Electric Management Information System based on Graph Clustering |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20141210 Termination date: 20211202 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |