- System Assurance - 1st Edition
- System Assurance: Beyond Detecting Vulnerabilities (The MK/OMG Press)
- System Assurance
- Table of Contents
The later case of course being the situation where you can provide assurances that a system is "secure". The authors do an excellent job of laying the foundation and describing the current landscape in terms of language, processes, definitions, SCAP, and other efforts to formalize vulnerability knowledge. They then promote their own system in chapters 8 and 9 The OMG software assurance ecosystem.
System Assurance - 1st Edition
It is a very formalized framework for providing system assurance that includes threat modelling, a standard protocol for exchanging system facts, and standards for exchanging security policies and patterns. While there is an example case study at the end, it's for a sample system, not an organization. I would be curious to know what organizations have begun using this process and how they went about it. For the average enterprise this system is probably overkill, but if you're in an enterprise which is serious about security and needs a formalized process to provide information assurance to stakeholders, then this is an excellent system to look at.
The book starts by giving you an overview of cyber security and why hackers are repeatedly successful. It asserts that they have a much better system for distributing information among their communities. The defense side, however, lacks the same capabilities to distribute information. The book then goes into explaining the process of system assurance, from building confidence and how to do so, understanding the risks,identifying threats, vulnerabilities, collecting system knowledge and developing the assurance argument.
The book goes into a lot of detail here, providing diagrams with the different functions and the process flow.
In the end, the OMG ecosystem describes how to do this in an efficient way. One important part of it is collecting and distributing knowledge. To do so it presents the need to have a common vocabulary so different parties can make the same out of a piece of information.
System Assurance: Beyond Detecting Vulnerabilities (The MK/OMG Press)
There is a use case at the end of the book but if would be nice to have more examples throughout the chapters. The book starts with an example using cats in a building and how we can be sure that there are no cats in a building. I think more examples would have been helpful in digesting a lot of the material presented. See all 4 reviews. Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers.
Learn more about Amazon Giveaway. Products of this store will be shipped directly from the US to your country. Products of this store will be shipped directly from the UK to your country. Products of this store will be shipped directly from China to your country.
Products of this store will be shipped directly from Japan to your country. Products of this store will be shipped directly from Hong Kong to your country. Products of this store will be shipped directly from Kuwait to your country. Kuwait Change Country.
Shop By Category. My Orders. Track Orders. Change Language.go site
English Arabic. Important Links.
- Ubuy Hong Kong Online Shopping For omg in Affordable Prices..
- Passion Between the Sheets - Erotic Short Story for Women?
- Join Kobo & start eReading today;
Follow Us. App Download.
Table of Contents
US UK. Thank you for subscribing! Please check your email to confirm your subscription. Our Stores.