Shawn A. Butler

Security attribute evaluation method: a cost-benefit approach

Conducting cost-benefit analyses of architectural attributes such as security has always been difficult, because the benefits are difficult to assess. Specialists usually make security decisions, but program managers are left wondering whether their investment in security is well spent. This paper summarizes the results of using a cost-benefit analysis method called SAEM to compare alternative security designs in a financial and accounting information system. The case study presented in this paper starts with a multi-attribute risk assessment that results in a prioritized list of risks. Security specialists estimate countermeasure benefits and how the organizations risks are reduced. Using SAEM, security design alternatives are compared with the organizations current selection of security technologies to see if a more cost-effective solution is possible. The goal of using SAEM is to help information-system stakeholders decide whether their security investment is consistent with the expected risks.

Security Issues with the Global Command and Control System (GCCS)

The Global Command and Control System (GCCS) was one of the most ambitious and largest software integration tasks in the history of the Department of Defense. As the Chief Systems Engineer for GCCS, I found architectural differences among command and control systems presented unique integration and interoperability challenges. In this paper I present 3 security-related examples of specific problems I encountered when I attempted to integrate several systems into GCCS. I also discuss the problem of system-level security analysis and introduce a framework that software engineers can use to evaluate security.

Software Assurance Education

Software engineering processes for building safe and secure software have existed for a long time. However, these processes-particularly for secure software engineering-have not been widely taught within colleges and universities leading to a shortage of graduates skilled in these areas. This panel will discuss the increasing need for colleges and universities to produce graduates that are skilled in building safe and secure software. Panelists will share their experiences teaching courses in these areas and future directions for curricula.

Fifth international workshop on economics-driven software engineering research (EDSER-5) "The search for value in engineering decisions"

The series of EDSER workshops are a unique forum to discuss and advance the state-of-the-art research and practice in economics driven software engineering. The EDSER-5 will bring together leading researchers and practitioners to provide further understanding how economic and business considerations affect - and should affect - software engineering decisions.