Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Software Assurance Metrics and Tool Evaluation (SAMATE)

Published

Author(s)

Michael J. Kass

Abstract

The National Software Reference Library (NSRL) of the U.S. National Institute of Standards and Technology (NIST) collects software from various sources and publishes file profiles computed from this software (such as MD5 and SHA-1 hashes) as a Reference Data Set (RDS) of information. The RDS can be used in the forensic examination of file systems, for example, to speed the process of identifying unknown or suspicious files. This paper describes the cross-platform, public domain, Linux/Apache/MySQL/Perl (LAMP) framework with which we produce the RDS from acquired software. The framework is easily deployed (it has been packaged on a Knoppix-based live CD) and allows for the distributed processing of large numbers of files in a loose, heterogeneous computing cluster. We go on to suggest that the framework is sufficiently general in its implementation to be suitable for application to classes of problems quite beyond our original scope.
Proceedings Title
DHS/DoD Software Assurance Forum
Conference Dates
April 11-12, 2005
Conference Location
Alexandria, VA

Citation

Kass, M. (2005), Software Assurance Metrics and Tool Evaluation (SAMATE), DHS/DoD Software Assurance Forum, Alexandria, VA (Accessed April 15, 2024)
Created April 1, 2005, Updated February 19, 2017