search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Security Measurement and Analysis

Presentation
By
In this presentation, the authors describe work being performed by the SEI in the area of security measurement and analysis.
Publisher

Software Engineering Institute

Subjects

Abstract

For several years, the software engineering community has been working to identify practices aimed at developing more secure software. Although some foundational work has been performed, efforts to measure software security assurance have yet to materialize in any substantive fashion. As a result, decision-makers (e.g., development program and project managers, acquisition program offices) lack confidence in the security characteristics of their software infrastructures.

The CERT Program at Carnegie Mellon University’s Software Engineering Institute (SEI) has chartered the Security Measurement and Analysis (SMA) Project to advance the state of the practice in security measurement and analysis.

The objective of the SMA Project is to develop frameworks, methods, and tools for measuring and monitoring the security of large-scale, networked systems across the life cycle and supply chain.

SHARE
Download PDF
Part of a Collection

Cybersecurity Engineering Research: Software Assurance Measurement and Analysis Collection
Ask a question about this Presentation