Summary of 1996 Workshop
The Workshop on Information Technology Assurance and Trustworthiness (WITAT) investigates and promotes promising methods of gaining assurance in information technology.
Are you sure your information is adequately protected?
How do you know that your privacy is being guarded?
Can your customers trust you?
Recent technological advances have forced these issues on the IT field. WITAT brings together people from all different areas of IT to identify and pursue new approaches to these questions. This year's WITAT features panels on all the major types of assurance, including many innovative non-traditional approaches. This workshop recognizes the existence and emergence of numerous methods to obtain assurance. However, the relative value, promise, and applicability of each is unclear for specific systems. The objective for WITAT '96 is to determine merits of these alternative assurance approaches. This objective will be accomplished through the presentation of alternative assurance approaches to assurance stakeholders and producers, receiving immediate feedback from a diverse audience, reviewing reaction to presented approaches and creating a strategy for moving ahead.
Background -- Purpose of workshop
The Workshop -- Workshop schedule
Before entrusting valuable information assets to an IT system and putting the
organization in a position of depending on the confidentiality, integrity,
and availability of these assets, responsible management must be convinced
that the IT system is sufficiently trustworthy to meet the needs of its
operational environment.
WITAT '96 is the third in a series of annual workshops addressing the
assurance and trustworthiness. The
first workshop
identified and analyzed
crucial issues on assurance in IT systems and provided input to the
development of policy guidance for determining the type and level of
assurance appropriate in a given environment. The participants came to the
consensus that no one technique can provide comprehensively adequate
assurance. The second
workshop built upon the first by making recommendations
based on the issues and problems identified. Specific direction recommended
by participants at the second workshop included:
Information on current and past WITAT activities can be found at the
WWW address
g.
WITAT '96 is a three day event consisting of an assurance and trustworthiness
tutorial, a symposium of alternative assurance techniques, and a workshop to
determine how to evolve the most promising new techniques.
Speaker: Joel Sachs, President, The Sachs Groups
The 1996 WITAT tutorial focuses in three major areas and is designed to aid
attendees in being full and active participants in the rest of workshop.
Emphasis will be placed on understanding varying contexts and precisely
differentiating concepts associated with assurance. Three key levels of
abstraction will be stressed along with assurance notions, namely the
enterprise (operational business), the system, and the product level.
Assurances will be discussed relative to each. Additionally, assurance will
be discussed from both the provision and consumption perspectives.
The tutorials will be organized into the following three areas:
The first one will cover developing solutions in which properties must be
assured. The second will examine and compare specific assurance approaches
including ones from other areas and disciplines. The last will discuss the
assessment and perception of risk and the relationship between assurance
and risk management. Examples primarily from information systems security
and nuclear safety will be used as they represent two different rather
different approaches to assurance.
With these tutorials, the attendees will equipped to discuss assurance, its
purposes, and its limitation. They will be able to compare alternative
methods within the security discipline as well as with other disciplines.
This day will consist of a presentation and discussion of the available
approaches to gaining confidence in information systems. Traditional and
emerging techniques will be reviewed and debated for their satisfaction of
current assurance needs. The panels for this day are as follows
( Details of panel
membership):
ASSURANCE PREDICTORS:
Can assurance in an information system be gained from
looking at the capability of the organization or individuals involved in
develop/integrating/maintaining/operating the system? There are many methods
that provide information about organizational or individual capability. What
assurance do these methods provide? A panel will discuss various methods that
indicate an organization's or individual's capabilities in an attempt to
answer the above questions. The methods to be discussed include: Capability
Maturity Models (CMMs), the Generally Accepted System Security Practices
(GSSP), Internalianal Information System Security Certification Consortium
(ISC2), ISO 9000 series, Past Performance and Trusted Software Development
Methodology (TSDM).
SYSTEM ANALYSIS: The most direct way to achieve assurance in an information
system is to analyze it directly. A panel will discuss traditional
authoritative methods such as TPEP and ITSEM and the acceptance of less
authoritative independent testing.
OPERATIONAL ASSURANCE:
Product and system assurance is only one ingredient
involved in gaining confidence in an operation. Operational assurance
depends not only on the information technology, but also on the people,
environment, and processes involved. Even if information technology was 100%
free of flaws, people would have to install, configure, and use it correctly
to be secure. A panel will discuss the available methods for gaining
operational assuraance. The methods studied included: setting policy, risk
assessment, background checks, configuration management, training,
monitoring, and incident response.
IMPACT MITIGATION: Other known assurance techniques focus on reducing the
vulnerabilities of the information system. These new types of assurance are
not related to avoiding vulnerabilities of the system at all, but instead
seek to mitigate the impact of defects usually in the form of software fixes
or monetary reimbursement. A panel will discuss several impact reduction
assurance methods including warranties, insurance, and legal liability.
DETERMINING THE APPROPRIATE MIX:
What is the right mix of assurance
approaches for your organization? It depends on factors such as your
environment, reliance on technology, value of reputation, impact of security
breaches, and connectivity needs.A panel will guide a discussion of how to
determine the most effective combinations of assurance approaches for
commercial and government systems, Different ways of composing assurance
approaches will be discussed including: assurance arguments, trade-offs, and
criteria.
Participants will break into discussion groups to address implementation
issues for alternative assurance techniques. Each group will work on a set of
technical issues brought out the previous day about a specific assurance
alternative.
Previous
1994 and 1995 WITAT workshops
Background
The Workshop
Tuesday, 3 September 1996:Assurance and Trustworthiness Tutorial [Optional]
Wednesday, 4 September 1996: Assurance and Trustworthiness Symposium
Thursday, 5 September 1996: Workshop on Alternative Assurance Techniques
Workshop Committee
| Marshall Abrams | The MITRE Corporation | abrams@mitre.org |
| Diana Akers | The MITRE Corporation | akers@smiley.mitre.org |
| Maryam Alavi | University of Maryland | malavi@bmgtmail.umd.edu |
| Lynn Ambuel | National Security Agency | ambuel@dockmaster.ncsc.mil |
| Karen Ferraiolo | Arca Systems, Inc. | ferraiolo@arca.md.com |
| Jay Kahn | The MITRE Corporation | jkahn@mitre.org |
| *Douglas J. Landoll | Arca Systems, Inc. | landoll@arca.com |
| Carolyn Wichers | BDM | cwichers@bdm.com |
| Jeff Williams | Arca Systems, Inc. | williams@arca.com |
| Marvin Zelkowitz | University of Maryland | mvz@cs.umd.edu |
| Fee: | Tutorial (Day 1) | $110.00 (includes lunch) |
| Panel and Cluster Days | $120.00 (includes lunches) |
Hotel Information: $79/night. Columbia Hilton, 5485 Twin Knolls Road, Columbia, MD. Phone: 410-997-1060. (Go west from I95 at MD 175 in Columbia. Left at Thunder Hill Road, which is last light before US 29. Right at next corner to Hotel. MD 175 is about 10 miles south of Baltimore Beltway and 15 miles north of Washington Beltway. BWI airport is closest (about 15 miles) and National Airport in Washington is about 30 miles away.). When making your reservations, please be sure to state that you are attending WITAT '96 in order to receive the proper rates.
Registration Information: Send the registration form with a check made out to Aerospace Computer Security Associates for the proper amount, and send to:
| Name | _____________________________________________ |
| Company | _____________________________________________ |
| Address | _____________________________________________ |
| City/State/Zip | _____________________________________________ |
| Phone/Fax | _____________________________________________ |
| _____________________________________________ |
| [ ] | Tutorial Day only (Sept. 3) | $ 110.00 |
| [ ] | Symposium and Workshop Days only (Sept. 4-5) | $ 120.00 |
| [ ] | All three days (Sept. 3-5) | $ 225.00 |
Method of Payments: Please complete all information requested on the registration form and return to above address. All registration fees must be paid in U.S. dollars. Payment can be made by cash, personal check, money order or company check. Non-U.S. attendees should send personal, bank, or travelers checks. Travelers checks may be the least expensive option.
Refund Policy: Anyone requesting a refund must notify Marvin Zelkowitz
in writing no
later than August 15, 1996 in order to receive a full refund
(less $25 cancellation fee). After that date, NO money will be refunded.
Substitutions may be made prior to the start of the workshop.
Last Change: August 3, 1996