使用结构化保证案例模型的软件保证。

IF 1.5 4区 工程技术 Journal of Research of the National Institute of Standards and Technology Pub Date : 2010-06-01 Print Date: 2010-05-01 DOI:10.6028/jres.115.013
Thomas Rhodes, Frederick Boland, Elizabeth Fong, Michael Kass
{"title":"使用结构化保证案例模型的软件保证。","authors":"Thomas Rhodes,&nbsp;Frederick Boland,&nbsp;Elizabeth Fong,&nbsp;Michael Kass","doi":"10.6028/jres.115.013","DOIUrl":null,"url":null,"abstract":"<p><p>Software assurance is an important part of the software development process to reduce risks and ensure that the software is dependable and trustworthy. Software defects and weaknesses can often lead to software errors and failures and to exploitation by malicious users. Testing, certification and accreditation have been traditionally used in the software assurance process to attempt to improve software trustworthiness. In this paper, we examine a methodology known as a structured assurance model, which has been widely used for assuring system safety, for its potential application to software assurance. We describe the structured assurance model and examine its application and use for software assurance. We identify strengths and weaknesses of this approach and suggest areas for further investigation and testing.</p>","PeriodicalId":17039,"journal":{"name":"Journal of Research of the National Institute of Standards and Technology","volume":"115 3","pages":"209-16"},"PeriodicalIF":1.5000,"publicationDate":"2010-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.6028/jres.115.013","citationCount":"32","resultStr":"{\"title\":\"Software Assurance Using Structured Assurance Case Models.\",\"authors\":\"Thomas Rhodes,&nbsp;Frederick Boland,&nbsp;Elizabeth Fong,&nbsp;Michael Kass\",\"doi\":\"10.6028/jres.115.013\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<p><p>Software assurance is an important part of the software development process to reduce risks and ensure that the software is dependable and trustworthy. Software defects and weaknesses can often lead to software errors and failures and to exploitation by malicious users. Testing, certification and accreditation have been traditionally used in the software assurance process to attempt to improve software trustworthiness. In this paper, we examine a methodology known as a structured assurance model, which has been widely used for assuring system safety, for its potential application to software assurance. We describe the structured assurance model and examine its application and use for software assurance. We identify strengths and weaknesses of this approach and suggest areas for further investigation and testing.</p>\",\"PeriodicalId\":17039,\"journal\":{\"name\":\"Journal of Research of the National Institute of Standards and Technology\",\"volume\":\"115 3\",\"pages\":\"209-16\"},\"PeriodicalIF\":1.5000,\"publicationDate\":\"2010-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://sci-hub-pdf.com/10.6028/jres.115.013\",\"citationCount\":\"32\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Research of the National Institute of Standards and Technology\",\"FirstCategoryId\":\"5\",\"ListUrlMain\":\"https://doi.org/10.6028/jres.115.013\",\"RegionNum\":4,\"RegionCategory\":\"工程技术\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"2010/5/1 0:00:00\",\"PubModel\":\"Print\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Research of the National Institute of Standards and Technology","FirstCategoryId":"5","ListUrlMain":"https://doi.org/10.6028/jres.115.013","RegionNum":4,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"2010/5/1 0:00:00","PubModel":"Print","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 32

摘要

软件保障是软件开发过程中降低风险、确保软件可靠和值得信赖的重要组成部分。软件缺陷和弱点通常会导致软件错误和失败,并被恶意用户利用。测试、认证和鉴定传统上用于软件保证过程,试图提高软件的可信度。在本文中,我们研究了一种被称为结构化保证模型的方法,它被广泛用于保证系统安全,因为它可能应用于软件保证。我们描述了结构化保证模型,并研究了它在软件保证中的应用和使用。我们确定了这种方法的优点和缺点,并提出了进一步调查和测试的领域。
本文章由计算机程序翻译,如有差异,请以英文原文为准。

摘要图片

摘要图片

查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
Software Assurance Using Structured Assurance Case Models.

Software assurance is an important part of the software development process to reduce risks and ensure that the software is dependable and trustworthy. Software defects and weaknesses can often lead to software errors and failures and to exploitation by malicious users. Testing, certification and accreditation have been traditionally used in the software assurance process to attempt to improve software trustworthiness. In this paper, we examine a methodology known as a structured assurance model, which has been widely used for assuring system safety, for its potential application to software assurance. We describe the structured assurance model and examine its application and use for software assurance. We identify strengths and weaknesses of this approach and suggest areas for further investigation and testing.

求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
自引率
33.30%
发文量
10
期刊介绍: The Journal of Research of the National Institute of Standards and Technology is the flagship publication of the National Institute of Standards and Technology. It has been published under various titles and forms since 1904, with its roots as Scientific Papers issued as the Bulletin of the Bureau of Standards. In 1928, the Scientific Papers were combined with Technologic Papers, which reported results of investigations of material and methods of testing. This new publication was titled the Bureau of Standards Journal of Research. The Journal of Research of NIST reports NIST research and development in metrology and related fields of physical science, engineering, applied mathematics, statistics, biotechnology, information technology.
期刊最新文献
Design Considerations for a Surface Disinfection Device Using Ultraviolet-C Light-Emitting Diodes. AbsorbanceQ: An App for Generating Absorbance Images from Brightfield Images. Broadband Dielectric Spectroscopy as a Potential Label-Free Method to Rapidly Verify Ultraviolet-C Radiation Disinfection. Perspectives and Recommendations Regarding Standards for Ultraviolet-C Whole-Room Disinfection in Healthcare. Atomic Model Structure of the NIST Monoclonal Antibody (NISTmAb) Reference Material.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1