Presentation is loading. Please wait.

Presentation is loading. Please wait.

QinetiQ Proprietary www.QinetiQ.com AN ISO standard for high integrity software.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "QinetiQ Proprietary www.QinetiQ.com AN ISO standard for high integrity software."— Presentation transcript:

1 QinetiQ Proprietary www.QinetiQ.com AN ISO standard for high integrity software

2 QinetiQ Proprietary www.QinetiQ.com ISO OWGV “Guidance to Avoiding Vulnerabilities in Programming Languages through Language Selection and Use” The intent is to produce guidance a type 2 technical report, not strictly an ISO standard Begs the questions: What is a vulnerability? How will it address language selection? How will it address language use?

3 QinetiQ Proprietary www.QinetiQ.com Scope Paraphrased from latest draft document In Scope: Applicable to the computer languages covered in the document (Ada, C/C++, Fortran, MUMPS) Applicable to software production review and maintenance Applicable where assured behaviour is required security, safety, mission/business criticality Out of Scope: Software engineering and management issues, e.g. Code design, configuration control, managerial processes

4 QinetiQ Proprietary www.QinetiQ.com What is a vulnerability? During the first meeting two distinct views on vulnerabilities emerged: The US view is primarily concerned with security and lead by DHS The ‘keynote’ speaker was Joe Jarzombek, DHS The chair and vice chair are funded by DHS A major contributor was CERT – with a DHS funded research programme into security issues The UK view was more based on: safety concerns (self and Rod Chapman, Praxis) General ‘computer science’ concerns (Brian Wichmann ex-NPL, Derek Jones – UK convener) As can be seen in the scope statement, we were successful in arguing that both need to be considered

5 QinetiQ Proprietary www.QinetiQ.com Why this is important! Benefits from a strong and agreed international standard (should be): Easier international purchasing suppliers and customers working to the same standards Potentially easier international sales developed to standards recognised by the customer Prevent/Reduce arguments with suppliers over what is necessary for high integrity software but…

6 QinetiQ Proprietary www.QinetiQ.com Risks If too narrowly focused – say principally on security – may lead to the argument ‘this has been developed to ISO24772, so that should be good enough’ Hence important that all significant issues get incorporated

7 QinetiQ Proprietary www.QinetiQ.com Strategy from first meeting The first meeting was a gathering of ideas Representatives from national bodies: US, UK, and Canada ISO language standards: Ada, C, MUMPS, Fortran Others: DHS The chair’s desire was to identify and provide mitigations for all popular/represented software languages The main aim was seen as to ‘raise the floor’ for all software development – particularly for those that are not aware that they are writing critical code (e.g. an application that has no critical function, but which contains a flaw that can be exploited by an attacker, because it is co-located with a critical system)

8 QinetiQ Proprietary www.QinetiQ.com Strategy from first meeting #2 The aim would be aim to provide potential users (who may be company software policy/guideline writers, rather than programmers) with a list of issues (the vulnerabilities) and possible mitigations for each language, from which they can form policy It is not intended that the standard would say: For this sort of application use language X For this sort of application, don’t use language Y

9 QinetiQ Proprietary www.QinetiQ.com ‘Challenges’ to first meeting strategy Given the effort that has gone into SPARK Ada, MISRA C/C++ etc., is ISO really capable of not only duplicating that effort – but extending it to more languages Where issues are already addressed in subsets, such as SPARK or MISRA, how does ISO develop sensible guidance that doesn’t infringe IPR? How do you get developers to adopt the guidelines, given that there is already a lot of guidance out there that isn’t being used (certainly enough to ‘raise the floor’)

10 QinetiQ Proprietary www.QinetiQ.com Revised strategy Develop a generic list of vulnerabilities based around predictable execution Provide annexes for each supported language that shows how the vulnerabilities manifest – together with an outline of what is necessary to avoid them This addresses the level of effort required and IPR issues (by not trying to provide complete solutions within the guidelines) – but still making it clear that language X is going to cause you far more problems than language Y As far as adoption is concerned, one possible US approach is to insist that all software purchased for federal programmes is compliant.

11 QinetiQ Proprietary www.QinetiQ.com Process and Timescales Submissions through national bodies – UK’s organised by BSI Membership of the UK panel is open to all Submissions can be position papers, discussion documents or specific proposed words for the final document When agreed by the UK panel – added to the international panel database for consideration at that panel International meetings planned: July, Ottawa October, Kona Hawaii December, Pittsburgh 2008 (sometime) Netherlands Originally planned for a draft release January 2008 – mid/late 2008 more realistic?

12 QinetiQ Proprietary www.QinetiQ.com Getting involved Via the UK (BSI) feeder panel contact the convener to get put on the mailing list derek@knosoft.co.uk Useful URLs: ISO OWGV website http://www.aitcnet.org/isai CERT have draft C and C++ guidance: https://www.securecoding.cert.org/confluence/pages/viewpage.action?pageId=637

Download ppt "QinetiQ Proprietary www.QinetiQ.com AN ISO standard for high integrity software."

Similar presentations

For SIGAda Conference, 2005 November, Atlanta 1 A New Standards Project on Avoiding Programming Language Vulnerabilities Jim Moore Liaison Representative.

For SIGAda Conference, 2005 November, Atlanta 1 A New Standards Project on Avoiding Programming Language Vulnerabilities Jim Moore Liaison Representative.
2007-09-15 Blue Pilot Consulting, Inc. 1 A new type of Working Group used for a new SC22 Working Group OWG: Vulnerability John Benito JTC 1/SC 22 WG14.

Blue Pilot Consulting, Inc. 1 A new type of Working Group used for a new SC22 Working Group OWG: Vulnerability John Benito JTC 1/SC 22 WG14.
© Copyright QinetiQ limited 2006 Objectives of Coding Standards & MISRA C++ Clive Pygott, Systems Assurance Group, QinetiQ Chris Tapp, Keylevel Consultants.

© Copyright QinetiQ limited 2006 Objectives of Coding Standards & MISRA C++ Clive Pygott, Systems Assurance Group, QinetiQ Chris Tapp, Keylevel Consultants.
For C Language WG, 2006 March, Berlin 1 A New Standards Project on Avoiding Programming Language Vulnerabilities Jim Moore Liaison Representative from.

For C Language WG, 2006 March, Berlin 1 A New Standards Project on Avoiding Programming Language Vulnerabilities Jim Moore Liaison Representative from.
1 OWG: Vulnerability ISO working group on Guidance for Avoiding Vulnerabilities through language selection and use. ISO/IEC JTC 1/SC 22/ OWGV N0139.

1 OWG: Vulnerability ISO working group on Guidance for Avoiding Vulnerabilities through language selection and use. ISO/IEC JTC 1/SC 22/ OWGV N0139.
1 ISO/IEC JTC 1/SC 22/WG 23 ISO working group on Guidance for Avoiding Vulnerabilities through language selection and use John Benito, Convener Jim Moore,

1 ISO/IEC JTC 1/SC 22/WG 23 ISO working group on Guidance for Avoiding Vulnerabilities through language selection and use John Benito, Convener Jim Moore,
Starting Planning for the 2010 Policy Key Issues Notes for the TAC Executive Committee April 8, 2009 Phil Hattis, AIAA VP for Public Policy.

Starting Planning for the 2010 Policy Key Issues Notes for the TAC Executive Committee April 8, 2009 Phil Hattis, AIAA VP for Public Policy.
ITU WORKSHOP ON STANDARDS AND INTELLECTUAL PROPERTY RIGHTS (IPR) ISSUES Session 5: Software copyright issues Dirk Weiler, Chairman of ETSI General Assembly.

ITU WORKSHOP ON STANDARDS AND INTELLECTUAL PROPERTY RIGHTS (IPR) ISSUES Session 5: Software copyright issues Dirk Weiler, Chairman of ETSI General Assembly.
Child Safeguarding Standards

Child Safeguarding Standards
Writing a funding bid Alan Lawrie Mellor & Lawrie Management.

Writing a funding bid Alan Lawrie Mellor & Lawrie Management.
Project Proposal.

Project Proposal.
How to Document A Business Management System

How to Document A Business Management System
Screen 1 of 24 Reporting Food Security Information Understanding the User’s Information Needs At the end of this lesson you will be able to: define the.

Screen 1 of 24 Reporting Food Security Information Understanding the User’s Information Needs At the end of this lesson you will be able to: define the.
1 Certification Chapter 14, Storey. 2 Topics  What is certification?  Various forms of certification  The process of system certification (the planning.

1 Certification Chapter 14, Storey. 2 Topics  What is certification?  Various forms of certification  The process of system certification (the planning.
Your Project Proposal.

Your Project Proposal.
Overview of Software Requirements

Overview of Software Requirements
COMP8130 and 4130Adrian Marshall 8130 and 4130 Test Management Adrian Marshall.

COMP8130 and 4130Adrian Marshall 8130 and 4130 Test Management Adrian Marshall.
Chapter 24 - Quality Management 1Chapter 24 Quality management.

Chapter 24 - Quality Management 1Chapter 24 Quality management.
Taking care of our people Being good neighbours

Taking care of our people Being good neighbours
RC14001 ® Update GPCA Responsible Care Committee September 23, 2013.

RC14001 ® Update GPCA Responsible Care Committee September 23, 2013.

Similar presentations

Ads by Google