Understanding and managing risk in software systems
Conference
·
OSTI ID:114488
When software is used in safety-critical, security-critical, or mission-critical situations, it is imperative to understand and manage the risks involved. A risk assessment methodology and toolset have been developed which are specific to software systems. This paper describes the concepts of the methodology, with emphasis on the experience of designing a toolset to support the methodology. Also presented are results of applying the methodology to two real software-based products: the software toolset itself, and a network firewall.
- Research Organization:
- Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
- Sponsoring Organization:
- USDOE, Washington, DC (United States)
- DOE Contract Number:
- AC04-94AL85000
- OSTI ID:
- 114488
- Report Number(s):
- SAND-95-1234C; CONF-951236-1; ON: DE95013833
- Resource Relation:
- Conference: Computer security applications conference, New Orleans, LA (Luxembourg), 11-15 Dec 1995; Other Information: PBD: [1995]
- Country of Publication:
- United States
- Language:
- English
Similar Records
Risk-based assessment of the surety of information systems
Managing risk in software systems
Real-Time Risk and Fault Management in the Mission Evaluation Room of the International Space Station
Technical Report
·
Mon Jul 01 00:00:00 EDT 1996
·
OSTI ID:114488
+2 more
Managing risk in software systems
Conference
·
Sat Jul 01 00:00:00 EDT 1995
·
OSTI ID:114488
Real-Time Risk and Fault Management in the Mission Evaluation Room of the International Space Station
Technical Report
·
Thu May 01 00:00:00 EDT 2003
·
OSTI ID:114488