Is trustworthiness of software measurable? The determination of trustworthiness of a piece of software is difficult. There may be different quantifiable representations of trustworthiness. This paper proposes a preliminary framework for assessing the trustworthiness of software. Such a trustworthy quantification framework will have characteristics of software systems that relate to or support trustworthiness, and seeks to identify and improve metrics and measurement methods (i.e., the metrology) that enable developers and users to analyze, evaluate and assure trustworthiness of software systems and applications. The approach currently taken involves development of a framework composed of models, with the ultimate goal being the ability to calculate a trustworthy index for software. An example is supplied in this paper to "test out" this framework.
Citation: NIST Interagency/Internal Report (NISTIR) - 7755Report Number:
NIST Pub Series: NIST Interagency/Internal Report (NISTIR)
Pub Type: NIST Pubs
framework, measures and matrics, software assurance, trustworthy software