COTS Testing (continued)

• Make sure you have current information from manufacturer

  • Found 80% of products changed compliance in 18 months

• Know how well updated any COTS database you use for compliancy is

  • Recommend COTS site: http://www.vendor2000.com

• In general, restrict COTS testing to the way the product is used in your environment

  • Lack of time to fully test
  • Lack of source code to fully know what to test

Previous slide

Next slide

Back to first slide

View graphic version