Software Engineering Institute

Chapter 93 deals with software assurance. It discusses the impact of the risks associated with software vulnerabilities and introduces basic definitions of software assurance. It also presents modern principles of software assurance and identifies a number of relevant process models, frameworks, and best practices. The chapter concludes with a research framework to support and identify gaps for future research and includes a description of the knowledge area for a Master of Software Assurance as mapped to maturity levels for building assured systems.