Search Publications Show Papers Presentations Media All Publications Including Keyword

Displaying 5 most recent documents in Papers, Presentations, and Media.    Use the filters above to narrow your search.

Papers

Software Assurance Curriculum Project Volume I: Master of Software Assurance Reference Curriculum 2010-09-01 Mead, Nancy R. Allen, Julia H. Ardis, Mark Educational institutions can use this reference curriculum to create a master of software assurance degree program or a track within existing engineering and computer science degree ... Paper Software Assurance Curriculum Project Volume II: Undergraduate Course Outlines 2010-09-01 Mead, Nancy R. Hilburn, Thomas J. Linger, Richard C. These seven courses provide students with fundamental skills for entering the software assurance field directly or continuing with graduate-level education. Paper Adapting the SQUARE Process for Privacy Requirements Engineering 2010-07-30 Bijwe, Ashwini Mead, Nancy R. This technical note explores the use of a disciplined approach to identifying privacy requirements, primarily how the Security Quality Requirements Engineering (SQUARE) process, which ... Paper Java Concurrency Guidelines 2010-06-07 Dhruv Mohindra Robert Seacord David Svoboda The CERT Oracle Secure Coding Standard for Java provides guidelines for secure coding in the Java programming language. This report documents the portion of those Java guidelines that ... Paper Specifications for Managed Strings, Second Edition 2010-06-04 Robert Seacord David Svoboda This report describes a managed string library for the C programming language. Paper

Presentations

The Key to Successful Monitoring for Detection of Insider Attacks 2010-03-04 Cappelli, Dawn M. Trzeciak, Randall F. Floodeen, Robert This presentation describes characteristics of various malicious insider activities and offers solution strategies. Presentation VRDA Prioritizing Vulnerability Response Efforts 2009-09-02 Manion, Art Describes concepts for prioritizing vulnerability response efforts. Presentation The Confluence of Physical and Cyber Security Management 2009-03-24 Samuel A. Merrell James F. Stevens This presentation, given at GOVSEC 2009, describes the benefits of using a service delivery view in developing physical and cyber protection strategies for critical infrastructures. Presentation Focus on Resiliency: A Process Improvement Approach to Security 2007-03-27 Young, Lisa The goal of security is to contribute to attaining and sustaining operational resiliency. Presentation CERT Resiliency Engineering Framework 2007-03-01 White, David A new environment in which business continuity& security must be increasingly effective & efficient. Presentation

Media

Mobile Device Security: Threats, Risks, and Actions to Take 2010-08-31 Frederick, Jonathan Allen, Julia Internet-connected mobile devices are becoming increasingly attractive targets. Media Podcast: Establishing a Nation Computer Security Incident Response Team (CSIRT) 2010-08-19 Haller, John Carpenter, Jeff Allen, Julia A national CSIRT is essential for protecting national and economic security, and ensuring the continuity of government agencies and critical infrastructures. Media Podcast: Securing Industrial Control Systems 2010-07-27 Manion, Art Securing systems that control physical switches, valves, pumps, meters, and manufacturing lines as these systems connect to the internet is critical for service continuity. Media Podcast: TJX, Heartland and CERT's Forensics Analysis Capabilities 2010-06-29 Moore, Kevin Waits, Cal Allen, Julia Complex, distributed, multi-year investigations of computer crimes require sophisticated methods, techniques, and tools. Media Podcast: The Power of Fuzz Testing to Reduce Security Vulnerabilities 2010-05-25 Dormann, Will To help identify and eliminate security vulnerabilities, subject all software that you build and buy to fuzz testing. Media

Home | About | Contact | FAQ | Jobs | Legal