{"title":"我们所说的“安全代码”是什么意思,我们如何教授我们的意思?","authors":"Cynthia E. Irvine","doi":"10.1109/CSEETW.2006.24","DOIUrl":null,"url":null,"abstract":"To add precision to the term \"secure code,\" several concepts from the area of high assurance system development are introduced. These allow the cost, in terms of organizational damage, to information asset owners of the lack of various forms of protection to be explored. The notion of system assurance levels is introduced as a solution to the combinatorial explosion of damage classes. Our approach to ensuring that students know how to construct evaluatable components, and as a by-product, \"secure code,\" is discussed.","PeriodicalId":325998,"journal":{"name":"19th Conference on Software Engineering Education and Training Workshops (CSEETW'06)","volume":"185 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-04-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"What Might We Mean By \\\"Secure Code\\\" and How Might We Teach What We Mean?\",\"authors\":\"Cynthia E. Irvine\",\"doi\":\"10.1109/CSEETW.2006.24\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"To add precision to the term \\\"secure code,\\\" several concepts from the area of high assurance system development are introduced. These allow the cost, in terms of organizational damage, to information asset owners of the lack of various forms of protection to be explored. The notion of system assurance levels is introduced as a solution to the combinatorial explosion of damage classes. Our approach to ensuring that students know how to construct evaluatable components, and as a by-product, \\\"secure code,\\\" is discussed.\",\"PeriodicalId\":325998,\"journal\":{\"name\":\"19th Conference on Software Engineering Education and Training Workshops (CSEETW'06)\",\"volume\":\"185 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2006-04-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"19th Conference on Software Engineering Education and Training Workshops (CSEETW'06)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSEETW.2006.24\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"19th Conference on Software Engineering Education and Training Workshops (CSEETW'06)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSEETW.2006.24","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
What Might We Mean By "Secure Code" and How Might We Teach What We Mean?
To add precision to the term "secure code," several concepts from the area of high assurance system development are introduced. These allow the cost, in terms of organizational damage, to information asset owners of the lack of various forms of protection to be explored. The notion of system assurance levels is introduced as a solution to the combinatorial explosion of damage classes. Our approach to ensuring that students know how to construct evaluatable components, and as a by-product, "secure code," is discussed.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
