skip to main content

DOE PAGESDOE PAGES

Title: Towards improving software security by using simulation to inform requirements and conceptual design

We illustrate the use of modeling and simulation early in the system life-cycle to improve security and reduce costs. The models that we develop for this illustration are inspired by problems in reliability analysis and supervisory control, for which similar models are used to quantify failure probabilities and rates. In the context of security, we propose that models of this general type can be used to understand trades between risk and cost while writing system requirements and during conceptual design, and thereby significantly reduce the need for expensive security corrections after a system enters operation
Authors:
 [1] ;  [1] ;  [1]
  1. Oak Ridge National Lab. (ORNL), Oak Ridge, TN (United States)
Publication Date:
OSTI Identifier:
1223064
Grant/Contract Number:
AC05-00OR22725
Type:
Accepted Manuscript
Journal Name:
Journal of Defense Modeling and Simulation
Additional Journal Information:
Journal Volume: 12; Journal ID: ISSN 1548-5129
Publisher:
Society for Modeling and Simulation International
Research Org:
Oak Ridge National Lab. (ORNL), Oak Ridge, TN (United States)
Sponsoring Org:
USDOE
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING