Hangout for experimental confirmation and demonstration of software, computing, and networking. The exercises don't always work out. The professor is a bumbler and the laboratory assistant is a skanky dufus.

- Archives - 2004-06-13 2004-06-20 2004-06-27 2004-08-29 2004-09-05 2004-09-12 2004-09-19 2004-10-10 2004-10-24 2004-11-07 2004-11-28 2004-12-05 2004-12-12 2004-12-26 2005-01-30 2005-02-06 2005-03-06 2005-03-13 2005-03-20 2005-04-03 2005-04-10 2005-04-17 2005-04-24 2005-05-01 2005-05-08 2005-05-15 2005-05-29 2005-06-05 2005-06-12 2005-06-19 2005-06-26 2005-07-10 2005-07-17 2005-07-31 2005-08-28 2005-10-09 2005-10-16 2005-10-23 2005-11-13 2005-11-27 2005-12-04 2005-12-18 2006-01-08 2006-02-05 2006-02-12 2006-02-19 2006-03-05 2006-03-12 2006-03-26 2006-04-23 2006-04-30 2006-07-16 2006-07-30 2006-08-06 2006-09-03 2006-10-08 2006-10-22 2006-10-29 2006-11-26 2006-12-10 2007-01-28 2007-02-04 2007-02-11 2007-03-11 2007-03-25 2007-04-08 2007-06-03 2007-06-10 2007-06-17 2007-07-01 2007-07-08 2007-08-19 2007-09-30 2007-10-07 2007-10-21 2007-11-04 2007-11-11 2007-11-18 2007-11-25 2008-01-27 2008-02-03 2008-02-10 2008-02-17 2008-02-24 2008-03-09 2008-04-06 2008-05-18 2008-05-25 2008-06-01 2008-06-08 2008-07-13 2008-08-10 2008-08-24 2008-08-31 2008-09-07 2008-10-05 2008-12-28 2009-05-10 2010-04-25


Blog Feed

Recent Items
 
Republishing before Silence
 
Command Line Utilities: What Would Purr Do?
 
Retiring InfoNuovo.com
 
Confirmable Experience: What a Wideness Gains
 
Confirmable Experience: Consider the Real World
 
Cybersmith: IE 8.0 Mitigation #1: Site-wide Compat...
 
DMware: OK, What's CMIS Exactly?
 
Document Interoperability: The Web Lesson
 
Cybersmith: The IE 8.0 Disruption
 
Cybersmith: The Confirmability of Confirmable Expe...

  

visits to Orcmid's Lair pages

The nfoCentrale Blog Conclave
 
Millennia Antica: The Kiln Sitter's Diary
 
nfoWorks: Pursuing Harmony
 
Numbering Peano
 
Orcmid's Lair
 
Orcmid's Live Hideout
 
Prof. von Clueless in the Blunder Dome
 
Spanner Wingnut's Muddleware Lab (experimental)

nfoCentrale Associated Sites
 
DMA: The Document Management Alliance
 
DMware: Document Management Interoperability Exchange
 
Millennia Antica Pottery
 
The Miser Project
 
nfoCentrale: the Anchor Site
 
nfoWare: Information Processing Technology
 
nfoWorks: Tools for Document Interoperability
 
NuovoDoc: Design for Document System Interoperability
 
ODMA Interoperability Exchange
 
Orcmid's Lair
 
TROST: Open-System Trustworthiness

 

Identifying Key Elements of Safety-Critical Software

ACM News Service: Added Reliability to Safety-Critical Software.  This blurb reports on an IST Results report of 2005-02-22.  The funded research has led to the ATASDAS toolkit, which is also available in a commercialized form. The research project ended in May 2004, and the project coordinator is now involved in the commercialization as imPROVE-C, a product that may be mandated in a variety of situations. I find this slant puzzling.  The ATASDAS (Automated Target Analysis to SPeed up the Dependability AnalysiS) Consortium page provides no public solution, and the only link for useful content is to a proprietary validation & verification vendor.  So, as valuable as this approach might be, it is difficult to assess.

¶ posted by orcmid at 3/12/2005 12:07:00 AM

from:

 

CVSS: Common Vulnerability Scoring System

ACM News Service: Computer Vulnerabilities Given Unified Rating Systems.  The consortium-produced CVSS is being promoted for giving a consistent means for rating vulnerabilities based on the nature of the damage that an exploit can create: data theft, data corruption and alteration, denial of service, etc., covering a total of seven traits.  This seems like something to keep in mind with regard to carrying out threat modeling too. Celeste Biever's 2005-02-21 NewScientist.com article provides further details and links.  The CVSS report is available at the National Infrastructure Advisory Council link.

¶ posted by orcmid at 3/12/2005 12:01:00 AM

from:

 

Open-Source License Simplification (and Trust?)

ACM News Service: Open-Source Overseer Proposes Paring License List.  This squib describes the move to favoring a small number of easily applied open-source licenses and restricting the increase of duplicative licenses. The 2005-03-02 Stephen Shankland CNet article provides more links and examples of why some licenses have to be different.

¶ posted by orcmid at 3/11/2005 11:57:00 PM

from:

 

Identity, Authentication, and Attestation Together

ACM News Service: Identity Management, Access Specs Are Rolling Along.  Greg Goth, in a February 2005 IEEE Internet Computing article observes how authentication (Liberty Alliance style) and Security Assertions (SAML 2.0 style) are going to be integrated.  There are three assertions of special interest: (1) assertion of an identity claim, (2) attributon of user-specific details, and (3) authorization of particular privileges. It looks like there are the usual "standards"-group and sponsoring-organization rivalries at work here.  What's important for me is to see how this aspect of SAML 2.0 is adaptable to TROSTing in a disintermediated way.  I'm looking for a general system that does not require a specific single approach to authentication, especially for PKI.

¶ posted by orcmid at 3/11/2005 11:42:00 PM

from:

 

Collaborative Systems: Social Protocols

ACM News Service: Will Social Databases Give Way to Social Protocols?.  This blurb refers to the blog of a ZDNet commentator.  Does that make it journalism, when it is abstracted by a news service? David Berlind in a 2005-03-01 ZDNet posting suggests that a protocol could alleviate the need for intermediated services and allow individuals to provide identity and affinity information on their own sites and pages using the XHTML Friends Network (XFN) microformat.  The protocolaspect is the use of the rel attribute in links to suggest the relationship that is claimed as part of a link from one party's material to that of another. I am presently busy with rel="nofollow" additions to many links among my own pages that confuse linking-based search-relevance schemes.  (It is cool that "orcmid" is at least as unique on the Internet as "Scoble."  It is less cool that most of the links that Google finds for my nom di bit are trivial -- dare I say banal -- references within my own material.) Meanwhile, I can see an adaptation of something like this as part of TROSTing authentication and establishment of authority via web-of-trust social-protocol assertions.  Hmm.

¶ posted by orcmid at 3/11/2005 11:33:00 PM

from:

 

Secure Computer Infrastructure as a Journey

ACM News Service: Linux Security Rough Around the Edges, But Improving.  The focus here is on measures to safeguard systems against attacks and to mitigate the consequences of successful exploits.  The delivery vehicle is the NSA-built Security Enhanced Linux (SELinux) distribution. There is also a strong claim that quality of software code is crucial, according to the technical director of the NSA Information Assurance Directorate.  I am not sure that the specific SELinux measures address code-quality issues so broadly or directly, but I can't quarrel with this being an important start on a never-ending voyage. The Larry Greenemeier 2005-03-03 Information Week article has the details. Of interest to me are the observed difficulties of implementation and how hard it is for the average customer to control.  It appears that there is enough excitement around the enhancements for refinement and improvement to be sustained.

¶ posted by orcmid at 3/11/2005 11:23:00 PM

from:

 

Component-Based Software Engineering Projects

ACM News Service: Laying Foundations for Component-Based Software Markets.  A combination of EC initiatives support development of organizational and commercial arrangements for component-based software.  COMPONENT+ for built-in test capability is oriented to also confirming that an integration is coherent.  This is tied to the European COTS User Working Group (ECUA), a growing organization now having annual workshops. A 2005-03-07 IST Results release has the details. The incorporation of built-in testing techniques is valuable in TROSTing of components too, so I will take special interest.  The University of Pau BIT/J library for incorporating built-in testing into Java components is interesting for the way that even their documentation process is accountable.  The work is available on the equivalent of a Creative Commons attribution license.  Simple.

¶ posted by orcmid at 3/11/2005 11:20:00 PM

from:

 

TROST: Templates for Raising Open-System Trustworthiness

On February 1, my proposal for an M.Sc in IT project dissertation was accepted by my Dissertation Advisor and approved by the Academic Coordinator of the program.  I more or less went autistic and comatose at that point, although I had prepared a project plan and the clock began running in relentless one-day-per-day fashion.  My deadline is July 28 and my plan envisions the dissertation being submitted on July 4 (and already slipping slightly in a replan I am conducting this weekend).  There have been many little stumbles getting started, and that is something for 43 Things at another time. Today, I want more of the world to know what this is about.  That's mostly because I have other items to post about related work and materials that I find in my explorations.  It seems useful to establish the perspective that gives rise to my interest. Why TROST?  Well, FROST was already taken and I was grasping at straws.  Once I had an acronym that worked in a (puny?) punny way, I held onto it.  I even adjusted the name of the project at one point.  I was careful to preserve the acronym. Templates?  "Frameworks," "patterns," and "templates" all work.  It is not about laws or theories although principles, practices, guidelines, and approaches figure in. I can go either way with "model" but I think I'll save that one from further over-use just now. Raising?  Sure, as in improving, enhancing, enriching, increasing, expanding, and so on.  I am looking at the achievement of trustworthiness as a process and a journey, not an absolute result.  I do mean continuous improvement along with resilience in the face of setbacks. Open-System?  I had originally said Open-Source here.  It didn't take long to realize that there is nothing in my vision for TROST that is peculiarly about open-source development (not to be confused with open-source licensing).  I chose open-system trustworthiness in homage to OSI, the Open Systems Interconnection effort that had much to teach us about interoperability and integration as well as network interconnection.  I mean open-system in this general way.  My attention is on ways in which we can address the trustworthiness of components and their integrations in any open-systems setting. Trustworthiness?  Well, that should be easy.  We all know trustworthiness when we see it, right?  Maybe not.  Starting out, I am looking at trustworthiness in terms of human arrangements for mitigation of the risks of everyday and not-so-everyday life.  There is, most of all, the risk of dealing with each other, especially at a distance.  I foresee a mapping into trustworthiness projected onto artifacts.  I am not willing, at this point, to take my eye off of the ultimately human and social nature of trust and trustworthiness. Enough blather, where's the code?  Uh, yes, this is an Information Technology project and that usually means that something will be built.  So, along with some templates and a fair amount of metatemplating too, there is a feasibility demonstration involving honest-to-gosh delivered software.  The sofware will be produced using open-box development of an open-source component.  This component will integrate into open-system middleware, ODMA, on the Microsoft Windows desktop. Here's more based on the definition of TROST as a SourceForge project:

Project Aims:

• To deliver a framework for development and maintenance of software with demonstrable trustworthiness
• To demonstrate feasibility of the framework by applying it to delivery of open-source software for integration on desktop PCs
• To have procedures and practices that end-users, system administrators, and integrators can apply to confirm the level of trustworthiness asserted for a program

  

Project Sketch:

Computer end-users and IT organizations find they must trust in the software that they use, having few means to directly appraise the steps taken to assure the trustworthiness of software that is offered to them.  Although trust is a factor in the adoption of any software components for use, commercial adopters also express concern about the authenticity, legality, and quality of software obtained from open-source distributions.  It is troubling when there is no distinct commercial organization that bears producer's risks and stands behind the software.
  
TROST consists of a framework and procedures that are useful for incorporating trustworthiness assurance into the development and delivery of open-system software, demonstrating such assurance, and verifying the assurances.
  
The goal is to enable adopters of a software product to confidently establish:

• Whether the software distribution is authentic, and what that means
• Whether the software is certified to be derived from the "official" source code, and how that can be and has been independently verified
• Whether there are assessments of the security, reliability, and integrity of individual source code constituents, how authoritative those assessments are, and the availability of details for independent review
• Whether the covered subject-matter of the software license has been asserted to be free of conflicting intellectual-property restrictions by its producers/contributers
• Whether a security threat model is defined for the software that addresses reconciliation to an overall threat model for the application in which the software is to be used
• When modifications and even revocation of assessments come to light, and any remedies that are available for discovered deficiencies in the software

I fancy having each installable component be linked with the latest certifications asserted for it, supporting trustworthiness as a dynamic.

TROSTing, did you say TROSTing?  More and more, I do say that.  It all started because TROST was not availabe as a domain name.  After looking for alternatives, I settled on TROSTing an an useful expression for the practice of raising the trustworthiness of open-system components. I found another interesting domain name.  It's for email:  trust@worthiness.org  Not an original device.  I couldn't help myself.  It's not working yet, so hold back on the spam for now, ok? On to Literature Search.  Now I get to suffer the fear and doubt of every postgraduate student.  It's all been done already, it's been shown as not worth doing already; and so on.  Yes, I am interested in leads to existing work, proposed work, past work, and the wisdom of the ages.  I am.  So lay it on me.

¶ posted by orcmid at 3/11/2005 11:09:00 PM

from: