Supplementary Materials for Software Assurance Curricula
• Collection
Publisher
Software Engineering Institute
Subjects
Abstract
This collection of supplementary materials and references is intended to help organizations use SEI Software Assurance Curricula in academic settings or workforce development efforts.
Workforce Development for Software Assurance
The Roadmap to Software Assurance Competency can help your organization initiate the use of software assurance competencies.
The SEI developed the Software Assurance Competency Model to create a foundation for assessing and advancing the capability of software assurance professionals. Endorsed by IEEE Computer Society, this model helps organizations and individuals determine their SwA competency across a range of knowledge areas and units. It provides a span of competency levels 1 through 5 as well as a decomposition into individual competencies based on knowledge and skills. It is a framework that an organization can adapt to its particular domain, culture, or structure.
On July 5, 2014, the Software and Systems Engineering Committee of the IEEE Computer Society Professional Activities Board (PAB) endorsed the SEI Software Assurance Competency Model as being both appropriate for software assurance roles and consistent with A Framework for PAB Competency Models.
Supplementary Materials
These are donated materials that could supplement a variety of software assurance courses at various academic levels or in workforce development.
Insider Threat
Secure Programming
Secure Software Management Course
These course materials, developed by David A. Wheeler for his Secure Software Design and Programming graduate course (SWE-681/ISA-681) at George Mason University, include presentations (available under the Creative Commons CC-BY-SA license) and a book.
Case Studies
Altran Praxis developed a case study for the National Security Agency that demonstrates correct software by construction using formal specification and verification. With the proper tools (which are available to academic users for free), you can compile and execute the implementation, which uses a subset of Ada. In addition, you can use the verification tools to check the formal proofs.
Collection Items
Software Assurance Competency Model
• Technical Note
By Thomas B. Hilburn (Embry-Riddle Aeronautical University), Mark A. Ardis (Stevens Institute of Technology), Glenn Johnson ((ISC)2), Andrew J. Kornecki (Embry-Riddle Aeronautical University), Nancy R. Mead
In this report, the authors describe a model that helps create a foundation for assessing and advancing the capability of software assurance professionals.
Read
Roadmap to Software Assurance Competency
• White Paper
By Software Engineering Institute
This white paper describes the Software Assurance (SwA) Core Body of Knowledge and SwA competency levels.
Read
SQUARE Instructional Materials
• Educational Material
By Software Engineering Institute
SQUARE instructional materials are designed for teaching the SQUARE method.
Learn More
Insider Threat Program Manager Certificate
• Brochure
By Software Engineering Institute
This brochure summarizes the CERT Insider Threat Center's Insider Threat Program Manager certificate program.
Learn More
Insider Threat Vulnerability Assessor Certificate
• Brochure
By Software Engineering Institute
This brochure summarizes the CERT Insider Threat Center's Insider Threat Vulnerability Assessor certificate program.
Learn More
CERT Secure Coding in C and C++ Professional Certificate
• Brochure
By Software Engineering Institute
This certificate program helps you find and fix C++ coding errors early in the software development lifecycle.
Learn More
CERT Secure Coding in Java Professional Certificate
• Brochure
By Software Engineering Institute
This certificate program helps you find and fix Java coding errors early in the software development lifecycle.
Learn More
The Software Assurance Competency Model: A Roadmap to Enhance Individual Professional Capability
• White Paper
By Nancy R. Mead, Dan Shoemaker (University of Detroit Mercy)
In this paper, the authors describe a software assurance competency model that can be used by professionals to improve their software assurance skills.
Read