Title :
Pretty good assurance
Author :
Wiliams, J.R. ; Schaefer, Marv ; Landoll, Douglas J.
Author_Institution :
Arca Syst. Inc., Vienna, VA, USA
Abstract :
This paper describes the need for pretty good assurance: clearly stated claims about the security properties of systems accompanied by evidence that explains in clear terms why we should believe that these claims are substantiated. Several different types of threats are identified and their relationships to assurance are explored. The developer´s role in creating on assurance argument is distinguished from the user´s role in consuming assurance. Finally, some thoughts on the future are presented
Keywords :
information technology; security of data; technological forecasting; assurance; developer´s role; future; system security properties; threats; user´s role; Advertising; Costs; Government; Information security; Information systems; Information technology; Internet; Personnel; Scheduling; Testing;
Conference_Titel :
New Security Paradigms Workshop, 1995. Proceedings
Conference_Location :
La Jolla, CA
Print_ISBN :
0-8186-7318-4
DOI :
10.1109/NSPW.1995.492347
