We Need Assurance!

نویسنده

  • Brian D. Snow
چکیده

When will we be secure? Nobody knows for sure – but it cannot happen before commercial security products and services possess not only enough functionality to satisfy customers’ stated needs, but also sufficient assurance of quality, reliability, safety, and appropriateness for use. Such assurances are lacking in most of today’s commercial security products and services. I discuss paths to better assurance in Operating Systems, Applications, and Hardware through better development environments, requirements definition, systems engineering, quality certification, and legal/regulatory constraints. I also give some examples.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Hooked on Facebook: The Role of Social Anxiety and Need for Social Assurance in Problematic Use of Facebook

There is a growing concern that excessive and uncontrolled use of Facebook not only interferes with performance at school or work but also poses threats to physical and psychological well-being. The present research investigated how two individual difference variables--social anxiety and need for social assurance--affect problematic use of Facebook. Drawing on the basic premises of the social s...

متن کامل

The Need for Information Assurance Curriculum Standards

In this paper we discus Information Assurance (IA) curri level IA programs. Existing IA sta professional training as opposed t general enough for typical underg present curriculum development e existing standards, which demons these standards. We propose a pro standardized IA curriculum that c college IA programs. The process IA model is based on a successful from MIT.

متن کامل

Macro and Micro Perspectives on Strategic Software Quality Assurance in Resource Constrained Environments

Software quality assurance (SQA) plays a key role in software development process. Software quality assurance methods include testing, inspection, formal method (program verification, model checking, etc.), static code analysis, and runtime verification, etc. A disciplined approach to meeting benefit, cost, schedule, and quality constraints is in need. In this paper, we propose two perspectives...

متن کامل

The Application of Bayesian Belief Networks to Assurance Case Preparation

Designers of dependable systems need to present assurance cases that support the claims made about the system’s dependability. Building this assurance case, incorporating different types of evidence and reasoning, can be daunting. In this paper we argue that, thanks to their flexibility and expressive capabilities, Bayesian Belief Networks are particularly suitable for building such assurance c...

متن کامل

Assuring Software Security Through Testing

(ISC)2®’s whitepaper, Code (In)Security, highlights various considerations that need to be taken into account to develop code that is secure. But merely developing secure code without attesting to its assurance capabilities is akin to operating an automobile without checking to ensure that the brakes work as expected. With such an outlook, a crash becomes not just possible but inevitable. This ...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 1999