Managing Software Development for Survivable Systems

Annals of Software Engineering

Volumn 11, Issue 1, 2001, Pages 45-78

  Mead, Nancy R ^a   Linger, Richard C ^a   Mchugh, John ^a   Lipson, Howard F ^a  

^a CARNEGIE MELLON UNIVERSITY   (United States)

Author keywords

Software life cycle; Software management; System survivability

Indexed keywords

EID: 0035563807     PISSN: 10227091     EISSN: None     Source Type: Journal    
DOI: 10.1023/A:1012587001946     Document Type: Article

References (24)

1. Anderson, R.H., A.C. Hearn and R.O. Hundley (1997), "RAND Studies of Cyberspace Security Issues and the Concept of a U.S. Minimum Essential Information Infrastructure," In Proceedings of the 1997 Information Survivability Workshop, CERT Coordination Center, Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA.
2. Boehm, B.W. (1989), Software Risk Management, IEEE Computer Society Press, Los Alamitos, CA.
3. Carrol, J.M. (1999), "Five Reasons for Scenario-Based Design," In Proceedings of the 32nd Annual Hawaii International Conference on Systems Sciences, IEEE Computer Society Press, Los Alamitos, CA.
4. Department of Defense (DoD) (1985), "Department of Defense Trusted Computer System Evaluation Criteria," DoD 5200.28-STD, National Computer Security Center, Department of Defense Computer Security Center.
5. Ebert, C. (1997), "Dealing with Nonfunctional Requirements in Large Software Systems," Annals of Software Engineering 3, 367-395.
6. Ellison, R., D. Fisher, R.C. Linger, H.F. Lipson, T. Longstaff and N.R. Mead (1999), "Survivable Network Systems: An Emerging Discipline," Technical Report CMU/SEI-97-TR-013 (November 1997, revised May 1999), Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA.
7. Ellison, R., R.C. Linger, T. Longstaff and N. R. Mead (1999), "Survivable Network System Analysis: A Case Study," IEEE Software 16, 4, 70-77.
8. Kazman, R., M. Klein, M. Barbacci, T. Longstaff, H.F. Lipson and S.J. Carriere (1998), "The Architecture Tradeoff Analysis Method," In Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, IEEE Computer Society Press, Los Alamitos, CA; available at: http: //www.sei.emu.edu/ata/.
9. Kemmerer, R.A. and P.A. Porras (1991), "Covert Flow Trees: A Visual Approach to Analyzing Covert Storage Channels," IEEE Transactions on Software Engineering 17, 11, 1166-1185.
10. Linger, R.C. (1999), "Systematic Generation of Stochastic Diversity as an Intrusion Barrier in Survivable Systems Software," In Proceedings of 32nd Annual Hawaii International Conference on System Sciences (HICSS-32), IEEE Computer Society Press, Los Alamitos, CA; available at: http://www.cert. org/research/.
11. Linger, R.C., N.R. Mead and H.F. Lipson (1998), "Requirements Definition for Survivable Network Systems," In Proceedings of the International Conference on Requirements Engineering, IEEE Computer Society Press, Los Alamitos, CA, 14-23; available at: http://www.cert.org/research/.
12. Linger, R.C. and C.J. Trammell (1999), "Cleanroom Software Engineering Theory and Practice," In Industrial Strength Formal Methods in Practice, M.G. Hinchey and J.P. Bowen, Eds., Springer, London, UK.
13. Lipson, H.F. and D.A. Fisher (1999), "Survivability: A New Technical and Business Perspective on Security," In Proceedings of the 1999 New Security Paradigms Workshop, Association for Computing Machinery, New York.
14. Marmor-Squires, A., J. McHugh, M. Branstad, B. Danner, L. Nagy, P. Rougeau and D. Sterne (1989), "A Risk Driven Process Model for the Development of Trusted Systems," In Proceedings of the 1989 Computer Security Applications Conference, IEEE Computer Society Press, Los Alamitos, CA, pp. 184-192.
15. Marmor-Squires, A.B. and P.A. Rougeau (1988), "Issues in Process Models and Integrated Environments for Trusted Systems Development," In Proceedings of the 11th National Computer Security Conference, National Institute of Standards and Technology, Gaithersburg, MD.
16. McHugh, J. (1983), "Towards the Generation of Efficient Code from Verified Programs," Ph.D. Dissertation, The University of Texas at Austin, Austin, TX.
17. McHugh, J., C.N. Payne and C. Martin (1994), "Assurance Mappings," In Handbook for the Computer Security Certification of Trusted Systems, Center for High Assurance Computing Systems, Naval Research Laboratory, Washington, DC.
18. Mills, H.D. (1992), "Certifying the Correctness of Software," In Proceedings of 25th Hawaii International Conference on System Sciences, IEEE Computer Society Press, Los Alamitos, CA.
19. Mills, H.D., R.C. Linger and A.R. Hevner (1986), Principles of Information Systems Analysis and Design, Academic Press, New York.
20. Parnas, D.L. and P.C. Clements (1986), "A Rational Design Process: How and Why to Fake It," IEEE Transactions on Software Engineering 12, 2, 251-257.
21. Prowell, S.J., C.J. Trammell, R.C. Linger and J.H. Poore (1999), Cleanroom Software Engineering: Technology and Process, Addison-Wesley, Reading, MA.
22. Royce, W.W. (1987), "Managing the Development of Large Software Systems," In Proceedings of the 9th International Conference on Software Engineering, IEEE Computer Society Press, Los Alamitos, CA.
23. Stavely, A.M. (1999), Toward Zero-Defect Programming, Addison-Wesley, Reading, MA.
24. Young, W.D. and J. McHugh (1987), "Coding for a Believable Specification to Implementation Mapping," In Proceedings of 1987 IEEE Symposium on Security and Privacy, IEEE Computer Society Press, Los Alamitos, CA.