Rapid Development of Secure Software

Monday
Presentation
   In the context of a thorough threat analysis, the development of a secure application can be accelerated in several ways.

   First, careful allocation of security obligations between a high assurance kernel and a target application reduces the scope of security implementation required of the application. The application is ‘plugged into’ the security foundation of the kernel to provide significant assurance.

   Second, the Multiple Independent Levels of Security (MILS) architecture approach cleanly identifies the critical cross-domain security components minimizing the scope and depth of security review. Expensive security efforts can be targeted accurately.

   And finally, each stage of refinement from specification through implementation introduces security obligations in translation. Each necessitates a costly specific demonstration of the correspondence between the artifact of the previous stage and its derivative.

   Strongly-typed functional languages can provide a rapid specification prototype that can be expanded ‘in-place’ into the eventual implementation. Security guarantees of the prototype will exist in the implementation.
 
Monday - April 19, 2004
4:30 - 5:15 		Track 1
Salon G
 
Speakers:
Dr. John Launchbury
 
Presentation:
Not Available

MONDAY TUESDAY WEDNESDAY THURSDAY
 
TECHNICAL TRACKS || EXHIBITOR INFORMATION
CO-SPONSORS || SEARCH PROCEEDINGS
HOME

© 2004 [Utah State University]. All rights reserved.