ABSTRACT
In 2002 [1], the National Security Agency's Information Assurance Research Group coined the term, trust engineering, to describe a methodology for making use of software of uncertain provenance in mission-critical systems. Today, the loss of control that made software so hard to trust then applies to the rest of the supply chain as well. The discipline we described in the internal paper, <u>Trust-engineering: An Assurance Strategy for Software-based Systems</u>, no longer seems heretical today, even at NSA. Ten years later, we revisit the principles of trust engineering, compare the mechanisms available to us today with the practices of the past, and explore the construction of systems that are stronger than their weakest link.
- Alexander, S. and Meushaw, R. 2002. Trust-engineering: An Assurance Strategy for Software-based Systems. NSA unpublished paper.Google Scholar
- Meushaw, R. and Simard, D. 2008. NetTop Eight Years Later. The Next Wave. 27, 3 (April, 2008) pp 10--21.Google Scholar
- National Cyber Leap Year Summit Co-chairs' Report, 2009: http://www.cyber.st.dhs.gov/docs/National_Cyber_Leap_Year_Summit_2009_Co-Chairs_Report.pdf.Google Scholar
- http://www.nsa.gov/business/programs/tapo.shtmlGoogle Scholar
- http://www.nsa.gov/ia/programs/csfc_program/index.shtmlGoogle Scholar
- http://365.rsaconference.com/docs/DOC-3509Google Scholar
- http://csrc.nist.gov/groups/SMA/ispab/documents/minutes/2009-04/ispab_mswanson-nist_april2009.pdfGoogle Scholar
Index Terms
- Trust engineering: rejecting the tyranny of the weakest link
Recommendations
National culture and consumer trust in e-commerce
The article examines how culture influences trust in e-commerce.Disposition to trust is a significant predictor of perceived trustworthiness.Disposition to trust mediates effects between national culture and trustworthiness.Long-term orientation and ...
Trust dynamics in global software engineering
ESEM '10: Proceedings of the 2010 ACM-IEEE International Symposium on Empirical Software Engineering and MeasurementTrust is one of the key factors that determines success or failure of any software project. However, achieving and maintaining trust in distributed software projects, when team members are geographically, temporally and culturally distant from each ...
Examining Mobile Banking User Trust: A Tripartite Perspective
Building users' trust is crucial to alleviating their perceived risk and facilitating their usage of mobile banking. Drawing on a tripartite perspective of transference-based, personality-based and self-perception-based determinants, this research ...
Comments