Firewall Wizards mailing list archives

Re: Security Assessment Methodology

From: Lance Spitzner <lance () spitzner net>
Date: Sun, 14 May 2000 15:04:04 -0500 (CDT)

On Fri, 12 May 2000, Robert McMahon wrote:

I am researching best practices in security assessment methodologies.  I
have used the System Security Engineering Capability Maturity Model
(SSE-CMM) as a basis for performing security assessments in my past (see
http://www.sse-cmm.org for more detail).  However,  in keeping up to
date, I would appreciate any advise on other security assessment
methodologies that are also highly regarded in industry.


I have one for firewall assessments.
http://www.enteract.com/~lspitz/audit.html

hope that helps

lance

Current thread:

Security Assessment Methodology Robert McMahon (May 12)
- Re: Security Assessment Methodology Lance Spitzner (May 15)