Abstract—Security testing is an important step in the lifetime
of both newly-designed and existing systems. Different
methodologies exist to guide testers to the selection, design,
and implementation of the most appropriate testing procedures
for various contexts. Typically, each methodology stems from
the specific needs of a particular category of actors, and consequently
is biased towards some aspect of peculiar interest. This
work compares the most commonly adopted methodologies
to point out their strengths and weaknesses, and, building
on the results of the performed analysis, proposes a path
towards the definition of an integrated approach, by defining
the characteristics that a new methodology should exhibit in
order to combine the best aspects of the existing ones.
If you are planning to come let me know we will organize something fun together !