A Head Start on Assurance
Author
Marshall D. Abrams, Patricia R. Toth, ed., U.S. Department of Commerce
Abstract
The purpose of the Invitational Workshop on Information Technology (IT) Assurance and Trustworthiness was to identify crucial issues on assurance in IT systems and to provide input into development of policy guidance on determining the type and level of assurance appropriate in a given environment. The readers of these proceedings include those who handle sensitive information involving national security, privacy, commercial value, integrity, and availability.
Existing IT security policy guidance is based on computer and communications architectures of the early 1980s. Technological changes since that time mandate a review and revision of policy guidance on assurance and trustworthiness, especially since the changes encompass such technologies as distributed systems, local area networks, the worldwide Internet, policy-enforcing applications, and public key cryptography.
Institution
U.S. Department of Commerce
Publication Date
0000-00-00
Contents
1. Introduction
2. The Opening Plenary
3. Security Assurance tradeoffs
4. Pedigree
5. Security Architecture and Applications
6. Process
7. Metrics and Testing
8. Risk Management
9. Closing
Keywords
Information Technology
Location
A hard-copy of this is in Haas
Subject
Invitational Workshop on Information Tehnology