Independent Validation and Verification of automated information systems in the Department of Energy

Hunteman, W J; Caldwell, R

Title: Independent Validation and Verification of automated information systems in the Department of Energy

Conference · Fri Jul 01 00:00:00 EDT 1994

OSTI ID:10163049

Hunteman, W J ^[1]; Caldwell, R ^[2]

Los Alamos National Lab., NM (United States)
USDOE Assistant Secretary for Defense Programs, Washington, DC (United States). Office of Safeguards and Security

The Department of Energy (DOE) has established an Independent Validation and Verification (IV&V) program for all classified automated information systems (AIS) operating in compartmented or multi-level modes. The IV&V program was established in DOE Order 5639.6A and described in the manual associated with the Order. This paper describes the DOE IV&V program, the IV&V process and activities, the expected benefits from an IV&V, and the criteria and methodologies used during an IV&V. The first IV&V under this program was conducted on the Integrated Computing Network (ICN) at Los Alamos National Laboratory and several lessons learned are presented. The DOE IV&V program is based on the following definitions. An IV&V is defined as the use of expertise from outside an AIS organization to conduct validation and verification studies on a classified AIS. Validation is defined as the process of applying the specialized security test and evaluation procedures, tools, and equipment needed to establish acceptance for joint usage of an AIS by one or more departments or agencies and their contractors. Verification is the process of comparing two levels of an AIS specification for proper correspondence (e.g., security policy model with top-level specifications, top-level specifications with source code, or source code with object code).

View Conference

Cite

Export

Save

Research Organization:: Los Alamos National Lab., NM (United States)

Sponsoring Organization:: USDOE, Washington, DC (United States)

DOE Contract Number:: W-7405-ENG-36

OSTI ID:: 10163049

Report Number(s):: LA-UR-94-2128; CONF-9410140-1; ON: DE94014460

Resource Relation:: Conference: 17. national computer security conference,Baltimore, MD (United States),11-14 Oct 1994; Other Information: PBD: [1994]

Country of Publication:: United States

Language:: English

Similar Records

Concepts of Model Verification and Validation

Technical Report · Sat Oct 30 00:00:00 EDT 2004 · OSTI ID:10163049

Thacker, B H; Doebling, S W; Hemez, F M; +3 more

Study of verification, validation, and testing in the automated data processing system at the Department of Veterans Affairs

Technical Report · Mon Jan 01 00:00:00 EST 1990 · OSTI ID:10163049

Andrews, A.; Formento, J. W.; Hill, L. G.; +1 more

Independent verification and validation of large software requirement specification databases

Thesis/Dissertation · Wed Apr 01 00:00:00 EST 1992 · OSTI ID:10163049

Twitchell, Kevin E.

Related Subjects

99 GENERAL AND MISCELLANEOUS//MATHEMATICS, COMPUTING, AND INFORMATION SCIENCE
INFORMATION SYSTEMS
SECURITY
VERIFICATION
VALIDATION
SECRECY PROTECTION
COMPUTER NETWORKS
PROGRAM MANAGEMENT
990200
MATHEMATICS AND COMPUTERS

Title: Independent Validation and Verification of automated information systems in the Department of Energy

Citation Formats

Similar Records

Related Subjects