TY - BOOK AU - Mansourov,Nikolai AU - Campara,Djenana ED - ScienceDirect (Online service) TI - System assurance: beyond detecting vulnerabilities T2 - The MK/OMG press SN - 0123814146 (electronic bk.) PY - 2010/// CY - San Francisco, Calif., Oxford PB - Morgan Kaufmann, Elsevier Science [distributor] KW - Computer security KW - Electronic books KW - local N1 - Why Hackers know more about our systems -- Confidence as a Product -- How to Build Confidence -- Knowledge of System as of Element in Cybersecurity argument -- Knowledge of Risk as an Element of Cybersecurity argument -- Knowledge of Vulnerabilities as an Element of Cybersecurity Argument -- Vulnerability Patterns as a New Assurance Content -- OMG Software Assurance Ecosystem -- Common Fact Model for Assurance Content -- Linguistic Models -- Standard Protocol for Exchanging System Facts -- Case Study; Electronic reproduction; Amsterdam; Elsevier Science & Technology; 2010; Mode of access: World Wide Web; System requirements: Web browser; Title from title screen (viewed on Dec. 21, 2010); Access may be restricted to users at subscribing institutions N2 - In this day of frequent acquisitions and perpetual application integrations, systems are often an amalgamation of multiple programming languages and runtime platforms using new and legacy content. Systems of such mixed origins are increasingly vulnerable to defects and subversion. System Assurance: Beyond Detecting Vulnerabilities addresses these critical issues. As a practical resource for security analysts and engineers tasked with system assurance, the book teaches you how to use the Object Management Group's (OMG) expertise and unique standards to obtain accurate knowledge about your existing software and compose objective metrics for system assurance. OMG's Assurance Ecosystem provides a common framework for discovering, integrating, analyzing, and distributing facts about your existing enterprise software. Its foundation is the standard protocol for exchanging system facts, defined as the OMG Knowledge Discovery Metamodel (KDM). In addition, the Semantics of Business Vocabularies and Business Rules (SBVR) defines a standard protocol for exchanging security policy rules and assurance patterns. Using these standards together, you will learn how to leverage the knowledge of the cybersecurity community and bring automation to protect your system. Provides end-to-end methodology for systematic, repeatable, and affordable System Assurance. Includes an overview of OMG Software Assurance Ecosystem protocols that integrate risk, architecture and code analysis guided by the assurance argument. Case Study illustrating the steps of the System Assurance Methodology using automated tools UR - https://www-sciencedirect-com.ezproxy.lit.ie/science/book/9780123814142 ER -