For OWGV Meeting #1, 2006 June, Washington, DC, USA 1D2-060622 Conveners Remarks, Meeting #1 of ISO/IEC JTC 1/SC 22/OWG:V Jim Moore Convener, ISO/IEC JTC.

Slides:



Advertisements
Similar presentations
Electric Induction Wireless Commumication Invitation to JTC 1/SC 06 for open review For Ecmas prospective comments and dispositions to the DIS in ISO/IEC.
Advertisements

1 IAF Working Group on FSMS Azusa Nakagawa-Inoue PAC TC meeting 16 June 2010.
1 Copyright © 2013 Elsevier Inc. All rights reserved. Appendix 01.
Chapter 1 Image Slides Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
Chapter Overview 13 April 2006 North Star Chapter Program Theme Integrated Product Development Emphasis - Systems Engineering Interaction with Other.
1 Report from ABET Inc. 21 June 2008 Moshe Kam Alternate ABET Director Denver, Colorado.
For SIGAda Conference, 2005 November, Atlanta 1 A New Standards Project on Avoiding Programming Language Vulnerabilities Jim Moore Liaison Representative.
Blue Pilot Consulting, Inc. 1 A new type of Working Group used for a new SC22 Working Group OWG: Vulnerability John Benito JTC 1/SC 22 WG14.
For OWGV Meeting #1, 2006 June, Washington, DC, USA 1D Terms of Reference: ISO/IEC Project , Guidance to Avoiding Vulnerabilities in Programming.
Liaison Report: JSR-282 (Real-Time Specification for Java) JSR-302 (Safety-Critical Java Technologies) Liaison Report: JSR-282 (Real-Time Specification.
1 Report of Progress of ISO/IEC 24772, Programming Language Vulnerabilities, in ISO/IEC JTC 1/SC 22 John Benito, Convener Jim Moore, Secretary ISO/IEC.
1 OWG: Vulnerability ISO working group on Guidance for Avoiding Vulnerabilities through language selection and use John Benito, Convener Jim Moore, Secretary.
For C Language WG, 2006 March, Berlin 1 A New Standards Project on Avoiding Programming Language Vulnerabilities Jim Moore Liaison Representative from.
1 OWG: Vulnerability ISO working group on Guidance for Avoiding Vulnerabilities through language selection and use. ISO/IEC JTC 1/SC 22/ OWGV N0139.
1 ISO/IEC JTC 1/SC 22/WG 23 ISO working group on Guidance for Avoiding Vulnerabilities through language selection and use John Benito, Convener Jim Moore,
September 2013 ASTM Officers Training Workshop September 2013 ASTM Officers Training Workshop Membership & Roster Maintenance September 2013 ASTM Officers.
Doc.: IEEE /0008r2 Submission March 2006 Steve Shellhammer, QualcommSlide 1 EC Summary of PAR Development Notice: This document has been prepared.
The IEEE and International Standards Steve Mills July 2006 IEEE 802 Plenary.
Doc.: IEEE Submission March 2006 Robert F. HeileSlide st Session of meetings of the IEEE Working Group for Wireless.
Doc.: IEEE xxx-00 Submission July 2006 Robert F. HeileSlide rd Session of meetings of the IEEE Working Group for Wireless.
1Presentation to OECD/CCP COPOLCO International Organization for Standardization.
NANPA Oversight Working Group Status Report to the NANC April 17, 2001 Chair Pat Caldwell.
Slide 1 WGISS CEOS WGISS 22, Annapolis September 2006 WGISS – GEO Discussion.
IGOS-P 15 and GEO Achievements planning meeting in May 2008 at UNESCO, Paris Report to 4 th C4, 17&
High Rate 60 GHz PHY, MAC and HDMI PAL Standard Invitation to ETSI BRAN, WiMedia and JTC 1/SC 06 open review For Ecmas comments and dispositions to DISs.
ECMA-373 Invitation to ETSI/SCP and JTC 1/SC 06 for open review For Ecmas comments and dispositions to DIS in ISO/IEC JTC 1s fast track procedure Ecma/GA/2006/136.
MAC & PHY Standard for Operation in TV White Space Invitation to JTC 1/SC 06 and CogNeA for open review For Ecmas prospective comments and dispositions.
ECMAScript Engineering Excellence For 15 years John Neumann.
International Financial Reporting Standards The views expressed in this presentation are those of the presenter, not necessarily those of the IASC Foundation.
1Running title of presentation PR/mo/item ID Date Updates on work in Progress in ISO United Nations Road Safety Collaboration 9th meeting Geneva, 17 and.
Addition Facts
ZMQS ZMQS
Richmond House, Liverpool (1) 26 th January 2004.
1 Kentuckys Public Safety Awareness Initiative Program Coordination and Partnerships August 23, 2005.
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.
Complex Electronic Hardware Policy & Guidance
VOORBLAD.
15. Oktober Oktober Oktober 2012.
Doc.: IEEE /0849r1 Submission July 2014 Adrian Stephens, Intel CorporationSlide 1 July Items for the LMSC EC Agenda Date:
Addition 1’s to 20.
How to Fill out a PAR for a New Standard Revised 8 July 2010.
1 Unit 1 Kinematics Chapter 1 Day
SIGAda2001© 2001, The MITRE Corporation. Permission is granted to reproduce without modification.James W. Moore - 1 ISO/IEC Standardization James W. Moore.
QinetiQ Proprietary AN ISO standard for high integrity software.
Software Assurance: A Strategic Initiative of the U.S. Department of Homeland Security to Promote Integrity, Security, and Reliability in Software Joe.
Report of Liaison to ISO/IEC JTC1/SC7 James W. Moore, CSDP Liaison Representative Prepared for Presentation to IEEE CS BOG, June.
ISO/TC 211 Workshop on registry Reston, Sept 2000 This workshop will focus on the requirements for registries and related mechanisms within the scope of.
INTERNATIONAL ELECTROTECHNICAL COMMISSION Standardization Management Board Decisions How They Affect Your TAG! Jim Matthews Vice President & SMB Chairman.
Doc.: IEEE /0795r2 Submission July 2014 The China NB contributed a variation on the “usual comment” on IEEE China NB comment on
Analysis of Programming Languages (2). 2 LANGUAGE DESIGN CONSTRAINTS  Computer architecture  Technical setting  Standards  Legacy systems.
Quality Assurance Briefing Defense Nuclear Facilities Safety Board June 1, 2005 Frank Russo Office of Corporate Performance Assessment Robert Loesch Office.
The InterNational Committee for Information Technology Standards INCITS New DIS/FDIS Balloting Procedures INCITS TC Officers Annual Symposium April 11-13,
Simulation Interoperability Standards Organization SISO ISO Liaison Presentation 22nd SC 24/WG 8 Plenary 9 Jun 2006 Prague, Czechoslovakia Liaisons between.
IEEE Computer Society Category A Liaison to ISO/IEC JTC 1/SC 40: Status Report Annette Reilly IEEE Computer Society Liaison.
IEEE CS SAB, Mar 2009 IEEE Computer Society Category A Liaison to ISO/IEC JTC 1/SC 40: Status Report Annette Reilly IEEE Computer Society
IEEE Computer Society Category A Liaison to JTC 1/SC 7: Status Report
James W. Moore Liaison Representative IEEE Computer Society June 2004
ISO/IEC JTC 1/SC 7 Working Group 42 - Architecture Johan Bendz
SAB Sponsor Progress Report
Programming Language Vulnerabilities within the ISO/IEC Standardization Community Stephen Michell International Convenor JTC 1/SC 22 WG 23 Programming.
For Computer Society Internal Use Only
IEEE CS SAB, Mar 2009 IEEE Computer Society Category A Liaison to ISO/IEC JTC 1/SC 40: Status Report Annette Reilly IEEE Computer Society
Status Report November 2007
Standardization Management Board Decisions How They Affect Your TAG!
ISO/IEC JTC 1 State of the Union
JTC1 ad hoc closing report (May11)
Presentation transcript:

For OWGV Meeting #1, 2006 June, Washington, DC, USA 1D Conveners Remarks, Meeting #1 of ISO/IEC JTC 1/SC 22/OWG:V Jim Moore Convener, ISO/IEC JTC 1/SC 22/OWG Vulnerability

For OWGV Meeting #1, 2006 June, Washington, DC, USA 2D Cyber Security is a Growing Problem -- From Joe Jarzombek, PMP, Director for Software Assurance, NCSD, DHS

For OWGV Meeting #1, 2006 June, Washington, DC, USA 3D Threat -- From Joe Jarzombek, PMP, Director for Software Assurance, NCSD, DHS The problem has implications for: Safety Privacy Security Economy Even national security

For OWGV Meeting #1, 2006 June, Washington, DC, USA 4D Government Response -- From Joe Jarzombek, PMP, Director for Software Assurance, NCSD, DHS There are initiatives underway in the US, in both Defense and Homeland Security.

For OWGV Meeting #1, 2006 June, Washington, DC, USA 5D Relationship of Software Assurance to Other Disciplines

For OWGV Meeting #1, 2006 June, Washington, DC, USA 6D Relationship of Software Assurance to Other Disciplines Some avoidable mistakes are encouraged by poor usage (arguably, poor design) of programming languages.

For OWGV Meeting #1, 2006 June, Washington, DC, USA 7D Problem Any programming language has constructs that are imperfectly defined, implementation- dependent or difficult to use correctly. As a result, software programs sometimes execute differently than intended by the writer. In some cases, these vulnerabilities can be exploited by unfriendly parties. –Can compromise safety, security and privacy. –Can be used to make additional attacks.

For OWGV Meeting #1, 2006 June, Washington, DC, USA 8D Complicating Factors The choice of programming language for a project is not solely a technical decision and is not made solely by software engineers. Some vulnerabilities cannot be mitigated by better use of the language but require mitigation by other methods, e.g. review, static analysis.

For OWGV Meeting #1, 2006 June, Washington, DC, USA 9D JTC1TC176TC65 ISOIEC SC7SC27 Quality MgmtSafety IT SecuritySoftware and Systems Engineering SC22 Programming Languages Relevant International Standards Committees

For OWGV Meeting #1, 2006 June, Washington, DC, USA 10D Officers John Hill, Chair, ISO/IEC JTC 1/SC 22 Sally Seitz (ANSI), Secretariat, SC 22 Jim Moore, Convener, SC 22/OWGV John Benito, Co-Convener, SC 22/OWGV Secretary ? Project Editor ?

For OWGV Meeting #1, 2006 June, Washington, DC, USA 11D Participation ParticipantNB DelegateWG LiaisonOther Liaison John BenitoUSWG14 (C) Ben BrosgolRT/SC Java Rod ChapmanSPARK Franco GasperoniFrance (HOD) Cesar Gonzalez-PerezSC 7/WG 19 Barry HedquistUS Kiyoshi IshihataJapan (HOD) Rex JaeschkeUS (HOD) Derek JonesUK (HOD) Stephen MichellCanada (HOD) Ed de MoelUSMDC (MUMPS) Jim MooreUS Dan NagleUS?J3 (Fortran) Erhard PloederederGermany (HOD)WG9 (Ada) Tom PlumUS?ECMA TC39/TG2 (C#) Robert SeacordCERT Barry Tauber?J4 (Cobol)

For OWGV Meeting #1, 2006 June, Washington, DC, USA 12D Progress SC 22 approves NP for project SC 22 creates OWGV; Moore is appointed as convener Moore makes information briefing to WG Benito named as co-convener of OWGV Moore makes information briefing to WG14. Benito briefs WG Disposition of comments on NP filed Benito makes information briefing to WG OWGV Meeting #1, June, Washington, DC OWGV Meeting #2, September, London, UK

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.