Show simple item record

dc.contributor.authorClark, Paul C.
dc.contributor.authorIrvine, Cynthia E.
dc.contributor.authorNguyen, Thuy D.
dc.dateDecember 12, 2014
dc.date.accessioned2015-04-24T22:58:00Z
dc.date.available2015-04-24T22:58:00Z
dc.date.issued2014-12-12
dc.identifier.urihttp://hdl.handle.net/10945/45006
dc.descriptionApproved for public release; distribution is unlimiteden_US
dc.description.abstractThis document describes the Life Cycle Management Plan for the development of a high assurance secure product. A high assurance product is one for which its users have a high level of confidence that its security policies will be enforced continuously and correctly. Such products are constructed so that they can be analyzed for these characteristics. Lifecycle activities ensure that the product reflects the intent to ensure that the product is trustworthy and that vigorous efforts have been made to ensure the absence of unspecified functionality, whether accidental or intentional. In particular, this document expands and unifies the testing requirements that are stated in the Life Cycle Management Plan, the Configuration Management Plan, and the Software Development Standards. This Quality Assurance (QA) Plan emphasizes requirements, restrictions, standards, responsibilities, etc., for these required tests. Specifically excluded from this plan, however, are the formal and semi-formal work, code correspondence, and covert channel analysis. In addition, there will need to be independent re-testing and penetration testing performed. It is also recognized that quality means more than just source code testing (such as conformance to documentation standards, correct spelling, etc.); those issues are currently covered in other documents.en_US
dc.description.sponsorshipPrepared for United States Navy, OPNAV N2/N6 and funded in part by United States Navy, OPNAV N2/N6. A portion of the material presented here is based upon work supported by the National Science Foundation under Grant No. CNS-0430566 and CNS-0430598.en_US
dc.publisherMonterey, California. Naval Postgraduate Schoolen_US
dc.rightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.en_US
dc.titleTrusted Computing Exemplar: Quality Assurance Planen_US
dc.typeTechnical Reporten_US
dc.contributor.corporateCyber Academic Groupen_US
dc.contributor.departmentCyber Academic Group
dc.subject.authorMachinery control systemsen_US
dc.subject.authorMCSen_US
dc.subject.authorlife cycle securityen_US
dc.subject.authorhigh assuranceen_US
dc.subject.authorsystem securityen_US
dc.subject.authortrustworthy systemsen_US
dc.identifier.npsreportNPS-CAG-14-009


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record