CSIAC

Cyber Security and Information Systems Information Analysis Center

/ CSIAC Reports

CSIAC Reports

Release Date   Title  

IA Metrics

(.mil/.gov ONLY) IA Metrics CR/TA This report establishes the fundamentals of metrics development methodology and metrics program establishment. It answers the following questions: - What are IA metrics? - Why do organizations need them? - How can they be used? - What is the process for developing IA metrics? - What are some of the IA metrics already and Read More

Defense In Depth

(.mil/.gov ONLY) Attacks on DoD systems have expanded from simple wiretaps and viruses to session hijacks and trojan horses, and the types and sophistication of these attacks are constantly evolving. In response to these threats, DoD response has also evolved. In recognition of the growing threat and complexity of this problem, DoD developed the defense in Read More

Data Mining

(.mil/.gov ONLY) This report provides an overview of data mining techniques, applications, and COTS data mining software products. Data mining is used to discover previously unknown and meaningful relationships by sifting through large amounts of stored data. Data mining has applications in marketing, information assurance, risk management, and fraud Read More

Mining Software Engineering Data: A Survey

This report discusses the state-of-the-art, as well as recent advances in the use of data mining techniques as applied to software process and product information. This report includes: a discussion on data mining techniques and how they can be used to analyze software engineering data; a bibliography on data mining with special emphasis on data mining of Read More

Data Embedding for Information Assurance

(.mil/.gov ONLY) Provides an assessment of the state-of-the-art in data embedding technology and its application to IA. It is particularly relevant to: information "providers" concerned about intellectual property protection and access control; information "consumers" who are concerned about the security and validation of critical information; and law Read More

Object-Oriented Database Management Systems Revisited

This report reviews the state of the art of Object-Oriented Database Management Systems (OODBMS). The objective of this report is to provide the reader with an understanding of the issues relevant to OODBMS technology and to describe where commercial products stand on these issues. A further objective is to describe the current state of commercial OODBMS in Read More

Using Defect Tracking and Analysis to Improve Software Quality

Defect tracking is a critical component to a successful software quality effort. In fact, Robert Grady of Hewlett-Packard stated in 1996 that “software defect data is [the] most important available management information source for software process improvement decisions,” and that “ignoring defect data can lead to serious consequences for an organization’s Read More

Understanding and Improving Technology Transfer in Software Engineering

This State-of-the-Art-Report summarizes the history of software engineering technology transfer and suggests ways to help us understand how to shorten the time between innovation and effective practice. It begins by examining earlier efforts to understand software-related technology transfer. Then we discuss the process of creating, evaluating, packaging and Read More

Modern Empirical Cost and Schedule Estimation Tools

Cost models were derived from the collection and analysis of large collections of project data. Modelers would fit a curve to the data and analyze those parameters that affected the curve. Early models applied to custom-developed software systems. New software development philosophies and technologies have emerged in the 1980s and 1990s to reduce development Read More