Trusted Computing Exemplar: Quality Assurance Plan
dc.contributor.author | Clark, Paul C. | |
dc.contributor.author | Irvine, Cynthia E. | |
dc.contributor.author | Nguyen, Thuy D. | |
dc.date | December 12, 2014 | |
dc.date.accessioned | 2015-04-24T22:58:00Z | |
dc.date.available | 2015-04-24T22:58:00Z | |
dc.date.issued | 2014-12-12 | |
dc.identifier.uri | https://hdl.handle.net/10945/45006 | |
dc.description.abstract | This document describes the Life Cycle Management Plan for the development of a high assurance secure product. A high assurance product is one for which its users have a high level of confidence that its security policies will be enforced continuously and correctly. Such products are constructed so that they can be analyzed for these characteristics. Lifecycle activities ensure that the product reflects the intent to ensure that the product is trustworthy and that vigorous efforts have been made to ensure the absence of unspecified functionality, whether accidental or intentional. In particular, this document expands and unifies the testing requirements that are stated in the Life Cycle Management Plan, the Configuration Management Plan, and the Software Development Standards. This Quality Assurance (QA) Plan emphasizes requirements, restrictions, standards, responsibilities, etc., for these required tests. Specifically excluded from this plan, however, are the formal and semi-formal work, code correspondence, and covert channel analysis. In addition, there will need to be independent re-testing and penetration testing performed. It is also recognized that quality means more than just source code testing (such as conformance to documentation standards, correct spelling, etc.); those issues are currently covered in other documents. | en_US |
dc.description.sponsorship | Prepared for United States Navy, OPNAV N2/N6 and funded in part by United States Navy, OPNAV N2/N6. A portion of the material presented here is based upon work supported by the National Science Foundation under Grant No. CNS-0430566 and CNS-0430598. | en_US |
dc.publisher | Monterey, California. Naval Postgraduate School | en_US |
dc.rights | This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States. | en_US |
dc.title | Trusted Computing Exemplar: Quality Assurance Plan | en_US |
dc.type | Technical Report | en_US |
dc.contributor.corporate | Cyber Academic Group | en_US |
dc.contributor.department | Cyber Academic Group | |
dc.subject.author | Machinery control systems | en_US |
dc.subject.author | MCS | en_US |
dc.subject.author | life cycle security | en_US |
dc.subject.author | high assurance | en_US |
dc.subject.author | system security | en_US |
dc.subject.author | trustworthy systems | en_US |
dc.identifier.npsreport | NPS-CAG-14-009 | |
dc.description.distributionstatement | Approved for public release; distribution is unlimited. |
Files in this item
This item appears in the following Collection(s)
-
All Technical Reports Collection
Includes reports from all departments. -
Cyber Academic Group (NPS-CAG)
-
Faculty and Researchers' Publications