Certifying Software for High-Assurance Environments
نویسنده
چکیده
Software certi cation processes have become so intertwined with development processes that true product certi cation which should demonstrate that the software will behave appro priately is almost never employed This de ciency calls for a new generation of certi cation processes This paper presents a methodology for certifying software systems that will be em ployed in environments with high assurance requirements Our methodology is independent of how the software was developed Until software certi cation becomes a software centered activity as opposed to a process centered activity e g CMM TCSEC Common Critieria etc labeling software as highly reliable high assurance high integrity safe se cure etc is suspicious
منابع مشابه
Certifying controls and systems software
Software system certification presents itself with many challenges, including the necessity to certify the system at the level of functional requirements, code and binary levels, the need to chase down run-time errors, and the need for proving timing properties of the eventual, compiled system. This paper illustrates possible approaches for certifying code that arises from control systems requi...
متن کاملSoftware Assurance Measurement – State of the Practice
iv 1 Background and Assumptions 1 1.1 The Importance and Challenges of Software Assurance Measurement 1 1.2 Why Security Is a Concern 1 1.3 Purpose of This Report 3 1.4 Intended Audience 3 1.5 Scope 4 1.6 Constraints 5 2 Definition of Terms 6 2.1 What Is Software Assurance? 6 2.2 What Is Software Assurance Measurement? 6 2.3 Measurement Domains 7 2.4 Critical Programming Errors 8 3 Measurement ...
متن کاملMapping Linux Security Targets to Existing Test Suites
The Common Criteria standard provides an infrastructure for evaluating security functions of IT products and for certifying that security policies claimed by product suppliers are correctly enforced by the security functions themselves. Certifying Open Source software (OSS) can pave the way to OSS adoption in a number of security-conscious application environments. Recent experiences in certify...
متن کاملMacro and Micro Perspectives on Strategic Software Quality Assurance in Resource Constrained Environments
Software quality assurance (SQA) plays a key role in software development process. Software quality assurance methods include testing, inspection, formal method (program verification, model checking, etc.), static code analysis, and runtime verification, etc. A disciplined approach to meeting benefit, cost, schedule, and quality constraints is in need. In this paper, we propose two perspectives...
متن کاملSoftware Industrialization and Architecture Certification
The industrialization of software development induces several changes to the development process as software development becomes distributed over company borders. They cooperatively develop individual components that are later assembled to software systems. This division of responsibilities requires a stricter quality assurance and in fact, creates a setting where the certification of software ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- IEEE Software
دوره 16 شماره
صفحات -
تاریخ انتشار 1999