University of Minnesota
Software Engineering Center
/

You are here

Development of Security Software: A High-Assurance Methodology

Date of Publication: 
December 2009
Associated Research Groups: 
Publication Files: 
Abstract: 
This paper reports on a project to exercise, evaluate and enhance a methodology for developing high assurance software for an embedded system controller. In this approach, researchers at the National Security Agency capture system requirements precisely and unambiguously through functional specifications in Z. Rockwell Collins then implements these requirements using an integrated, model-based software development approach. The development effort is supported by a tool chain that provides automated code generation and support for formal verification. The specific system is a prototype high speed encryption system, although the controller could be adapted for use in a variety of critical systems in which very high assurance of correctness, reliability, and security or safety properties is essential.
Publisher: 
Springer-Verlag
Venue: 
Proceedings of the 11th International Conference of Formal Engineering Methods (ICFEM 2009).
bibtex: 
@InProceedings{Hardin09:Security, author = {David Hardin and D. Randolph Johnson and Lucas Wagner and Michael W. Whalen}, title = {Development of Security Software: A High-Assurance Methodology}, booktitle = {Proceedings of the 11th International Conference of Formal Engineering Methods (ICFEM 2009)}, year = {2009}, month = {December}, publisher = {Springer Verlag} }