TY  - BOOK
AU  - Mansourov,Nikolai
AU  - Campara,Djenana
TI  - System assurance : :  beyond detecting vulnerabilities / 
SN  - 9780123814142
U1  - 005.8   22
PY  - 2011///
CY  - Amsterdam : 
PB  -  Elsevier, 
KW  - Computer security
KW  - Computer networks
KW  -  Security measures
KW  - Management information systems
N1  - Includes index; CHAPTER 1. Introduction --  CHAPTER 2. Confidence as product --  CHAPTER 3. Vulnerabilities as knowledge --  CHAPTER 4. NIST Security Content Automation Protocol (SCAP) Ecosystem -- CHAPTER 5. Vulnerabilities in the System Context -- CHAPTER 6. Vulnerability Patterns  CHAPTER 7. Assurance Needs – Claims and Evidence --  CHAPTER 8. Common Fact Model for Assurance Ecosystem --  CHAPTER 9. Discovering Facts for Assurance --  CHAPTER 10. Assurance Content with SBVR --  CHAPTER 11. Assurance Facts with KDM --  CHAPTER 12. Case Study
N2  - System Assurance: Beyond Detecting Vulnerabilities addresses these critical issues. As a practical resource for security analysts and engineers tasked with system assurance, the book teaches you how to use the Object Management Group’s (OMG) expertise and unique standards to obtain accurate knowledge about your existing software and compose objective metrics for system assurance. OMG’s Assurance Ecosystem provides a common framework for discovering, integrating, analyzing, and distributing facts about your existing enterprise software. Its foundation is the standard protocol for exchanging system facts, defined as the OMG Knowledge Discovery Metamodel (KDM). In addition, the Semantics of Business Vocabularies and Business Rules (SBVR) defines a standard protocol for exchanging security policy rules and assurance patterns. Using these standards together, you will learn how to leverage the knowledge of the cybersecurity community and bring automation to protect your system
ER  -