This Recommendation discusses security assessment techniques that can be used on software-based elements in telecommunication/information and communication technology (ICT) networks. Both traditional circuit-switched networks and packet-based next generation networks are exposed to different threats and attacks ?C from external as well as internal sources ?C that target the various parts of software-based elements of a telecommunications/ICT network. Security assessment of softwarebased components before deployment in these networks can help operators and service providers to enhance the reliability of networks to a considerable extent. Hence@ there is a requirement for standardization in this area@ so that global security assessment standards and best practices for software-based elements can be made available to developers@ manufacturers@ operators and individual security experts. These techniques can be used individually or in combination@ as desired or felt appropriate.