Software Assurance Ecosystem
Below are two frameworks that represent aspects of software assurance and help organizations identify opportunities for improvement.
This framework builds a profile for an assurance capability area, such as vulnerability management, within an assurance quality such as security. The profile consists of many views developed using selected methods and models. From the analysis of these views, inefficiencies and candidate improvements for assurance
This framework addresses the customer and researcher challenges of selecting security methods and research approaches for building assured systems. This framework is also useful to CERT sponsors to track current research and development efforts in building assured systems.
This framework is a structured view of the people, activities, and technology that help organizations characterize the complexity of multi-system and multi-organizational business processes.