Posted by: David Harley | October 26, 2018

SE Labs introduces penalty shootout

SE Labs has introduced an interesting enhancement to its endpoint protection test methodology. While the company has always included targeted attacks in these tests, it has now introduced what it calls ‘attack chain scoring’. In other words, whereas previously the product under test received a scoring penalty for a breach that didn’t take into account how deeply the tester had penetrated into the system, there are now additional penalties where the attack gains more access, for example privilege escalation. This means that there is now a range of penalty scores between -1 and -5, depending on the severity of the breach.

More detail in the article by Simon Edwards here – Latest security tests introduce attack chain scoring – as well as links to the latest SE Labs reports.

David Harley

Posted in Simon Edwards | Tags: , ,

«

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Categories

%d bloggers like this: