Search Publications Show Papers Presentations Media All Publications Including Keyword

Displaying 5 most recent documents in Papers, Presentations, and Media.    Use the filters above to narrow your search.

Papers

Secure Design Patterns 2009-10-23 Dougherty, Chad Sayre, Kirk Seacord, Robert Describes a set of secure design patterns, which are descriptions or templates describing a general solution to a security problem that can be applied in many different situations. Paper Effectiveness of the Vulnerability Response Decision Assistance (VRDA) Framework 2009-08-25 Manion, Art et al. This paper examines the effectiveness of VRDA in terms of how well it predicts responses. Paper Insider Theft of Intellectual Property for Business Advantage: A Preliminary Model 2009-07-20 Andrew P. Moore Dawn M. Cappelli Thomas C. Caron, Eric Shaw, Randall F. Trzeciak This paper provides observations about and a preliminary system dynamics model of one class of insider crime based on empirical data. Paper As-if Infinitely Ranged Integer Model 2009-07-17 David Keaton Thomas Plum Robert C. Seacord This paper presents a model for automating the elimination of integer overflow and truncation in C and C++ programming code. Paper Making the Business Case for Software Assurance 2009-04-30 Mead, Nancy R. Allen, Julia H. et al. This report provides guidance for making the business case for building software assurance into software products during each software development life-cycle activity. Paper

Presentations

VRDA Prioritizing Vulnerability Response Efforts 2009-09-02 Manion, Art Describes concepts for prioritizing vulnerability response efforts. Presentation The Confluence of Physical and Cyber Security Management 2009-03-24 Samuel A. Merrell James F. Stevens This presentation, given at GOVSEC 2009, describes the benefits of using a service delivery view in developing physical and cyber protection strategies for critical infrastructures. Presentation Focus on Resiliency: A Process Improvement Approach to Security 2007-03-27 Young, Lisa The goal of security is to contribute to attaining and sustaining operational resiliency. Presentation CERT Resiliency Engineering Framework 2007-03-01 White, David A new environment in which business continuity& security must be increasingly effective & efficient. Presentation The CERT Survivability and Information Assurance Curriculum 2006-11-15 Rogers, Lawrence R. This presentation introduces and highlights the Survivability and Information Assurance (SIA) Curriculum. Presentation

Media

Podcast: The Smart Grid: Managing Electrical Power Distribution and Use 2009-09-29 Stevens, James Allen, Julia The smart grid is the use of digital technology to modernize the power grid, which comes with some new privacy and security challenges. Media Podcast: Mitigating Insider Threat: New and Improved Practices 2009-08-18 Cappelli, Dawn Trzeciak, Randy Moore, Andy Preventing and detecting insider threat is greatly improved by implementing 16 best practices based on 282 cases. Media Podcast: Analyzing Internet Traffic for Better Cyber Situational Awareness 2009-07-28 Gabbard, Derek Automation, innovation, reaction, and expansion are the foundation for obtaining meaningful network traffic intelligence in today’s extended enterprise. Media Podcast: Rethinking Risk Management 2009-07-07 Alberts, Chris Allen, Julia Business leaders need new approaches to address multi-enterprise, systems of systems risks across the life cycle and supply chain. Media Podcast: The Upside and Downside of Security in the Cloud 2009-06-16 Mather, Tim Allen, Julia When considering cloud services, business leaders need to weigh the economic benefits ag Media

Home | About | Contact | FAQ | Jobs | Legal