ETSI TR 101 583定义了术语和本体论，它们共同为一个共同的概念提供了基础 了解可用于测试通信产品和系统的安全测试技术。这个 术语和本体来自最新的研究，但也来自指定的当前标准和最佳实践 通过广泛的行业组织和标准。本文件旨在向以下方面提供信息: 从业人员了解测试和评估整个产品的安全性、健壮性和恢复力时使用的技术 以及系统开发生命周期。本文件列出了以下安全测试的术语和方法 方法:安全功能验证和基于风险的测试。负载、压力和性能测试。弹性和鲁棒性测试（模糊化）。渗透测试。静态应用程序安全测试（SAST）工具和技术超出了本文档的范围。

ETSI TR 101 583 defines terminology and an ontology which together provide the basis for a common understanding of security testing techniques which can be used in testing communication products and systems. The terminology and ontology have been derived from latest research, but also current standards and best practices specified by a broad range of standards organizations and industry bodies. The present document aims to provide information to practitioners on techniques used in testing, and assessment of security, robustness and resilience throughout the product and systems development lifecycle. The present document lists terms and methods for the following security testing approaches:Verification of security functions and risk-based testing.Load, stress and performance testing.Resilience and robustness testing (fuzzing).Penetration testing.Static Application Security Testing (SAST) tools and techniques are out of scope for the present document.