600.436 High-Assurance Systems
Fall 01/Introduction
6
Informal Definition: “Assurance”
¨Assurance is the process by which one obtains confidence in the security that a software system will enforce when operated correctly.
¨This includes the policies enforced, the degree of confidence in the enforcement, and an assessment of the appropriateness of those policies for the context in which the system will be used.