Keynote: Speed with Discipline
November 2015 • Presentation
This presentation describes an approach for achieving software security assurance while keeping the desired pace of releasing new capabilities.
Software Engineering Institute
This presentation was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.
There is a tension between the need to release capabilities rapidly and
the length of time needed to acquire capabilities, which includes the
time needed to complete accreditation processes. To accomplish both
requires an increased attention to operational requirements, effective
use of architecture, ability to release smaller software components, and
a major shift from monolithic, after-the-fact information assurance to
This presentation describes an approach and provides examples showing how software security assurance can be achieved while keeping the desired pace of releasing new capabilities. It concludes with a challenge to the audience to adopt and adapt the approach so mission assured software capabilities are released at the pace needed by the warfighter rather than a pace dictated by accreditation processes.