Title :
The Software Industry\´s "Clean Water Act" Alternative
Author :
Martin, Robert A. ; Christey, Steven M.
Abstract :
With water, we trust that qualities harmful to its intended use aren´t present. To avoid a regulatory solution to problems with contaminants that endanger software´s intended use, the industry needs to implement processes and technical methods for examining software for the contaminants that are most dangerous given its intended use. By finding systematic and verifiable ways to identify remove, and verify contaminated software, software providers can improve customers´ confidence in systems and possibly avoid regulatory solutions.
Keywords :
environmental science computing; water resources; clean water act alternative; contaminated software; customers confidence; software industry; software providers; Computer security; Computer software; Encoding; Error analysis; Risk management; Software engineering; Source coding; application security; code assessment; coding errors; design mistakes; operational impact; prioritization; risk; risk management; security mistakes; security weakness; software flaws; source code static analysis; vulnerability severity;
Journal_Title :
Security & Privacy, IEEE
