Software Security Assurance : State of the Art Report
The state-of-the-art report (SOAR) published by the Information Assurance Technology Analysis Center (IATAC) at http://iac.dtic.mil/iatac/download/security.pdf represents an output of collaborative efforts of organizations and individuals in the SwA Forum and Working Groups. The SOAR provides an overview of the current state of the environment in which software must operate and surveys current and emerging activities and organizations involved in promoting various aspects of software security assurance. The report also describes the variety of techniques and technologies in use in government, industry, and academia for specifying, acquiring, producing, assessing, and deploying software that can, with a justifiable degree of confidence, be said to be secure. The report also presents observations about noteworthy trends in software security assurance as a discipline.