Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST Software Assurance Metrics and Tool Evaluation (SAMATE)

Published

Author(s)

Michael J. Kass

Abstract

The National Software Reference Library (NSRL) of the U.S. National Institute of Standards and Technology (NIST) collects software from various sources and publishes file profiles computed from this software (such as MD5 and SHA-1 hashes) as a Reference Data Set (RDS) of information. The RDS can be used in the forensic examination of file systems, for example, to speed the process of identifying unknown or suspicious files. This paper describes the cross-platform, public domain, Linux/Apache/MySQL/Perl (LAMP) framework with which we produce the RDS from acquired software. The framework is easily deployed (it has been packaged on a Knoppix-based live CD) and allows for the distributed processing of large numbers of files in a loose, heterogeneous computing cluster. We go on to suggest that the framework is sufficiently general in its implementation to be suitable for application to classes of problems quite beyond our original scope.
Proceedings Title
Workshop on the Evaluation of Software Defect Detection Tools
Conference Dates
June 12, 2005
Conference Location
Chicago,

Citation

Kass, M. (2005), NIST Software Assurance Metrics and Tool Evaluation (SAMATE), Workshop on the Evaluation of Software Defect Detection Tools, Chicago, (Accessed March 28, 2024)
Created June 1, 2005, Updated February 19, 2017