정형성 기반 국방 안전/보안필수 소프트웨어 개발 및 인증 기준 : Formalism-Based Defense Safety/Security-Critical Software Development & Certification Criteria
Formalism-Based Defense Safety/Security-Critical Software Development & Certification Criteria
- 주제(키워드) Formal Methods(정형기법) , Safety-Critical(안전필수) , Security-Critical(보안필수) , Certification Criteria(인증기준) , RTCA/DO-178B , MoD DS 00-55 , Common Criteria
- 발행기관 한국군사과학기술학회
- 발행년도 2007
- 총서유형 Journal
- UCI G704-001584.2007.10.1.006
- KCI ID ART001045922
초록/요약
The paper provides the approach to apply formal methods to the development and certification criteria of defense safety/security-critical software. RTCA/DO-178B is recognized as a de facto international standard for airworthiness certification but lack of concrete activities and vagueness of verification/ certification criteria have been criticized. In the case of MoD Def Stan 00-55, the guidelines based on formal methods are concrete enough and structured for the defense safety-related software. Also Common Criteria Evaluation Assurance Level includes the strict requirements of formal methods for the certification of high-level security software. By analyzing the problems of DO-178B and comparing it with MoD Def Stan 00-55 and Common Criteria, we identity the important issues in safety and security space. And considering the identified issues, we carry out merging of DO-178B and CC EAL7 on the basis of formal methods. Also the actual case studies for formal methods applications are shown with respect to the verification and reuse of software components.
more