ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
A process-oriented methodology for assessing and improving software trustworthiness
Full text PdfPdf (1.18 MB)
Source Conference on Computer and Communications Security archive
Proceedings of the 2nd ACM Conference on Computer and communications security table of contents
Fairfax, Virginia, United States
Pages: 39 - 50  
Year of Publication: 1994
ISBN:0-89791-732-4
Authors
Edward Amoroso  AT&T Bell Laboratories
Carol Taylor  National Security Agency
John Watson  Martin Marietta
Jonathan Weiss  AT&T Network Systems
Sponsor
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 16,   Downloads (12 Months): 70,   Citation Count: 1
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/191177.191188
What is a DOI?

ABSTRACT

A high-level, technical summary of the Trusted Software Methodology (TSM) is provided in this paper. The trust principles and trust classes that comprise the TSM are presented and several engineering investigations and case studies surrounding the TSM are outlined. Appendices are included that highlight important areas of the TSM.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
J. Watson tuld E. Amoroso, "A Trusted Software Development Methodology," Proc. 13th Natl. Computer Security Conf., Oct. 1990, pp. 717-727.
 
2
E. Amoroso et al., "Toward An Approach to Measuring Software Trust," Proc. IEEE Syrup. Research in Security and Privacy, May 1991, pp. 198-218.
 
3
hltemational Standards Organization (ISO), ISO 9000, Second Edition, 1987.
 
4
W.Humphrey and W. Sweet, "A Method for Assuring the Software Engineering Capabilities of Contractors," CMU/SEI- 9 I-TR-25, 1987.
 
5
Department of Defense, National Computer Security Center, Trusted Computer System Evaluation Criteria, DoD 5200.28- STD, 1985.
6
David L. Parnas , A. John van Schouwen , Shu Po Kwan, Evaluation of safety-critical software, Communications of the ACM, v.33 n.6, p.636-648, June 1990  [doi>10.1145/78973.78974]
7
Ken Thompson, Reflections on trusting trust, Communications of the ACM, v.27 n.8, p.761-763, Aug 1984  [doi>10.1145/358198.358210]
 
8
Department of Defense, Militao, Standard/br Software Development, DoD-STD-2167A.

CITED BY
Etiel Petrinja , Ranga Nambakam , Alberto Sillitti, Introducing the OpenSource Maturity Model, Proceedings of the 2009 ICSE Workshop on Emerging Trends in Free/Libre/Open Source Software Research and Development, p.37-41, May 18-18, 2009

INDEX TERMS

Primary Classification:
  D. Software
  D.2 SOFTWARE ENGINEERING
      D.2.1 Requirements/Specifications
          Subjects: Methodologies (e.g., object-oriented, structured)


General Terms:
Theory

Collaborative Colleagues:
Edward Amoroso: colleagues
Carol Taylor: colleagues
John Watson: colleagues
Jonathan Weiss: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player