The IT Law Wiki

Glassbox test

32,057pages on
this wiki
Add New Page
Add New Page Talk0

Definition Edit

A glassbox test is

one where the tester is made knowledgeable about how the box works. The tester can see into the box, understand the mechanisms, and, therefore, can more effectively design an attack that may be successful. This test more closely simulates an insider attack. The glassbox test is also better able to evaluate more controls at deeper layers of a firm's defense-in-depth model.[1]

References Edit

  1. Report on Cybersecurity Practices, at 22.

Also on Fandom

Random Wiki