ABSTRACT
There is a growing need to engineer and operate critical systems with some level of measurable trust in the functions that make these systems secure. The term Information Assurance (IA) is now widely used to refer to the general concept of system security and this establishment of trust, but IA has yet to receive a precise definition. This paper discusses the concepts and principles that are essential to achieving IA objectives as a means to provide insights to the safety-critical Ada community regarding opportunities to impact the development of trusted security solutions.
- Amoroso, E.G., Fundamentals of Computer Security Technology, PTR Prentice Hall (1994) Google Scholar
Digital Library
- Common Criteria for Information Technology Security Evaluation, http://www.commoncriteria.org/cc/cc.html.Google Scholar
- Common Criteria Recognition Arrangement, http://www.commoncriteria.org/registry/mr.htmlGoogle Scholar
- First IEEE International Information Assurance Workshop, http://www.ieee-tfia.org/iwia2003/cfp.htmlGoogle Scholar
- Gasser, M., Building a Secure Computer System, Van Nostrand Reinhold (1988) Google Scholar
Digital Library
- Leveson, N.G., Safeware: System Safety and Computers, Addison Wesley (1995) Google Scholar
- Trusted Computer System Evaluation Criteria (TCSEC), US Dept of Defense (1985)Google Scholar
- Whitmore, J.J., A Method for Designing Secure Solutions, IBM Systems Journal, Vol 40, No 2, 2001 Google Scholar
Digital Library
- Wulf, W.A., Cyber Security: Beyond the Maginot Line, http://www.house.gov/science/full/oct10/wulf.htmGoogle Scholar
Index Terms
The essence of information assurance and its implications for the Ada community
Recommendations
The essence of information assurance and its implications for the Ada community
There is a growing need to engineer and operate critical systems with some level of measurable trust in the functions that make these systems secure. The term Information Assurance (IA) is now widely used to refer to the general concept of system ...
Information and Quality Assurance: An Unsolved, Perpetual Problem for Past and Future Generations
Quality assurance is well understood in the hardware/manufacturing community but not necessarily within the software community. The meaning of Information assurance depends on who you ask; those in the computer security field interpret information ...
Continuance of protective security behavior
Previous research has established continuance models that explain and predict an individual's behaviors when engaged with hedonic or functional systems, or with other environments that provide productivity-enhancing outcomes. However, within the context ...







Comments