|
Published Articles >> Table of Contents >> Abstract
15th Annual Computer Security Applications Conference (ACSAC '99)
p. 109
SCR: A Practical Approach to Building a High Assurance COMSEC Syste
James Kirby Jr, Naval Research Laboratory
Myla Archer, Naval Research Laboratory
Constance Heitmeyer, Naval Research Laboratory
Full Article Text:
  
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.1999.816018
Send link to a friend
| Abstract |
|
To date, the tabular-based SCR (Software Cost Reduction) method has been applied to the development of embedded control systems. This paper describes the successful application of the SCR method, including the SCR* toolset, to a different class of system, a COMSEC (Communications Security) device called CD that must correctly manage encrypted communications. The paper summarizes how the tools in SCR* were used to validate and to debug the SCR specification and to demonstrate that the specification satisfies a set of critical security properties. The development of the CD specification involved many tools in SCR*: a specification editor, a consistency checker, a simulator, the TAME interface to the theorem prover PVS, and various other analysis tools. Our experience provides evidence that use of the SCR* toolset to develop high-quality requirements specifications of moderately complex COMSEC systems is both practical and low-cost.
|
 Additional Information
|
Citation:
James Kirby Jr, Myla Archer, Constance Heitmeyer,
"SCR: A Practical Approach to Building a High Assurance COMSEC Syste,"
acsac,
p. 109,
15th Annual Computer Security Applications Conference (ACSAC '99),
1999
|
|
