Arguing Security - Creating Security Assurance Cases

Abstract

An assurance case is a body of evidence organized into an argument demonstrating that some claim about a system holds, i.e., is assured. Anassurance case is needed when it is important to show that a system exhibits some complex property such as safety, security, or reliability. In this article, our objective is to explain an approach to documenting an assurance case for system security, i.e., a security assurance case or, more succinctly, a security case.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2007
Accession Number
AD1171194

Entities

People

  • Charles Weinstock
  • Howard F. Lipson
  • John B. Goodenough

Organizations

  • Carnegie Mellon University

Tags

DTIC Thesaurus Topics

  • Best Practices
  • Computer Programming
  • Computer Programs
  • Cybersecurity
  • Department Of Defense
  • Education
  • Engineering
  • False Alarms
  • Homeland Security
  • Information Systems
  • Law
  • Life Cycles
  • Materials
  • Reliability
  • Security
  • Software Development
  • Standards
  • Test And Evaluation
  • Training
  • United States
  • Vulnerability
  • Websites

Readers

  • Artificial Intelligence
  • Educational Psychology
  • Organizational Process Management (OPM).