.............................................................................................................................. IV RÉSUMÉ ................................................................................................................................... V INTRODUCTION ....................................................................................................................

Defence Standard 00-56 Issue 4 is goal-based, and requires system developers to demonstrate how they have achieved safety. To this end, evidence is used to support claims relating to software safety. One of the most subtle questions when constructing a safety argument is the determination of whether the evidence presented is sufficient to assure the safety of the system to the level required. T...

The OMG fact-oriented approach to assurance allows full traceability between the system facts and the assurance claims, so that the system facts can be gathered by automated tools and used as evidence to justify assurance claims. OMG Software Assurance Ecosystem defines a stack of standards to enable interoperability for tools, services and machine-readable content for assurance of existing sof...

Gastric biopsies are often done to evaluate for Helicobacter gastritis. Given the oncogenic association with Helicobacter gastritis and the relative ease of therapy, it is important for pathology departments to identify all positive cases. We describe an institutional quality assurance study of an institutional method for the diagnosis of Helicobacter gastritis. We reviewed 356 gastric biopsy s...

SUMMARY This study examines environmental, social, and governance (ESG) reports of companies on The Wall Street Journal’s Investor’s Business Daily’s top 100 sustainable companies. We collect information whether the are assured, type assurance standards cited, provider, or not provider also audits financial statements. Fifty-eight percent sample voluntarily sought external services for some por...

Education in software assurance is an essential element in the effort to produce secure code. This paper describes two efforts that support national cybersecurity education goals: development of software assurance learning artifacts that can be integrated into conventional learning environments and development of a master of software assurance reference curriculum. SOFTWARE DEFENSE APPLICATION ...

This paper details our experiences with successfully validating a trusted device at FIPS 140-1 Level 4—earning the world’s first certificate at this highest level. Over the last several years, our group designed and built a physically secure PCI card (the IBM 4758 [5]) containing a general-purpose processor with crypto support. However, for this device to function as a trusted platform for secu...