Industry

The document was issued by industry or industrial organization.
news

Visible to the public NSA-approved cybersecurity law and policy course now available online

Submitted by willirn1 on Thu, 09/12/2019 - 11:29am

NSA-approved cybersecurity law and policy course now available online

Cyber Scoop

Shannon Vavra

August 27th, 2019

Anyone who is interested in cybersecurity law and policy can now take an online course that was partly shaped by National Security Agency.

news

Visible to the public NSA-approved cybersecurity law and policy course now available online

Submitted by willirn1 on Thu, 09/12/2019 - 11:40am

NSA-approved cybersecurity law and policy course now available online

Cyber Scoop

Shannon Vavra

August 27th, 2019

Anyone who is interested in cybersecurity law and policy can now take an online course that was partly shaped by National Security Agency.

file

Visible to the public Hardware/Software Coassurance using Algorithmic C and ACL2

Submitted by Katie Dey on Wed, 05/15/2019 - 9:35am. Contributor:

Dr. David S. Hardin has made contributions in the areas of formal methods, computer architecture for High Assurance systems, as well as real-time and embedded Java. He is a Principal Research Engineer in the Advanced Technology Center at Rockwell Collins, and currently serves as a co-Principal Investigator for the DARPA CASE (Cyber Assured Systems Engineering) program.

file

Visible to the public What Blockchain Got Right, No Really

Submitted by Katie Dey on Wed, 05/15/2019 - 9:35am. Contributor:
file

Visible to the public Automating Avionics Certification activities using Formal Methods

Submitted by Katie Dey on Mon, 05/06/2019 - 4:06pm. Contributor:

Certification of avionics software is achieved by following a rigorous, prescriptive development process, defined in Software Considerations in Airborne Systems and Equipment Certification, commonly referred to as DO-178C .This process prescribes software development and verification activities that result in airworthy software. Developing compliant software that adheres to the standard is costly and time consuming; for the most-critical avionics software there are 69 objectives that must be satisfied.

file

Visible to the public Semantics-Driven Testing of the PKCS11 API

Submitted by Katie Dey on Mon, 05/06/2019 - 4:06pm. Contributors:

PKCS11 is an industry standard API for communicating with cryptographic devices such as hardware security modules (HSMs). PKCS11 is a security critical API, and so implementation errors can have serious consequences. However, the PKCS11 standard is large and complex, with 100 pages of documentation for almost 50 functions. As a result, it is very challenging for developers to avoid API implementation errors. This is the problem that our work addresses.

file

Visible to the public Adversarial Examples that Fool both Computer Vision and Time-Limited Humans

Submitted by Katie Dey on Mon, 09/10/2018 - 10:32am. Contributor:

ABSTRACT

file

Visible to the public OODA Loops in Cyberspace: How Cyber Awareness Training Helps Threat Actors

Submitted by rzager on Fri, 09/07/2018 - 3:55pm. Contributors:

Cybersecurity's human adversarial engagement is often lost in discussions of cybersecurity. We discuss how defenders' focus on technology unintentionally creates vulnerabilities which can be exploited by threat actors. In particular, we discuss how the convergence of cyber awareness training and defensive technologies is exploited by threat actors with devastating consequences.