600.436
High-Assurance Systems
Fall 01/Introduction
11
About the Requirements
¨Some of the requirements are
testable:
The
system shall enforce a clearly defined authentication policy.
¨Some are contextual:
The
system may assume that physical access to the machine is restricted by
external (human) controls.
¨Some may be process-oriented:
No
code change shall be committed to the source base until it has been examined
and approved by someone other than the developer.