Paul E. Black, Software Assurance During Maintenance, Proc. 22nd IEEE International Conference on Software Maintenance (ICSM 2006), September 2006, Philadelphia, Pennsylvania, pp 70-72.

    Software development, testing, and maintenance tools must yield assurance information in a standardized form. Developers can use this information to argue that the software is adequate for its use and secure enough for the risk.
    NIST's Software Assurance Metrics And Tool Evaluation (SAMATE) project is developing specifications for software assurance tools. These specifications can include optional features for assurance information reports, encouraging tools to provide them. During maintenance, developers can collect this information to make explicit assurance cases.

Get the paper in PDF (24k) or DVI (13k) or Postscript (40k).

Get presentation slides (372k).

This page's URL is /~black/Papers/softAssurDuringMaintICSM06.html

Updated Wed Sep 19 10:57:04 2007

by Paul E. Black  (

Go to Black's papers or NIST home page.