Paul E. Black,
Software Assurance During Maintenance,
Proc. 22nd IEEE International
Conference on Software Maintenance (ICSM 2006), September 2006,
Philadelphia, Pennsylvania, pp 70-72.
Software development, testing, and maintenance tools must yield
assurance information in a standardized form. Developers can
use this information to argue that the software is adequate for
its use and secure enough for the risk.
NIST's Software Assurance Metrics And Tool Evaluation (SAMATE) project
is developing specifications for software assurance tools. These
specifications can include optional features for assurance information
reports, encouraging tools to provide them. During maintenance,
developers can collect this information to make explicit assurance
Get the paper in
PDF (24k) or
DVI (13k) or
This page's URL is /~black/Papers/softAssurDuringMaintICSM06.html
Wed Sep 19 10:57:04 2007
by Paul E. Black
Black's papers or
NIST home page.