| Performance Property Theories for Predictable Assembly from Certifiable Components (PACC) |
SEP 2004 |
|
| Authors:
Scott Hissam; Mark Klein; John Lehoczky; Paulo Merson; Gabriel Moreno; Kurt Wallnau; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
 | This report develops a queueing-theoretic solution to predict, for a real-time system, the average-case latency of aperiodic tasks managed by a sporadic server. The report applies this theory to a model problem drawn in the domain of industrial robot control. In this model problem, a controller with hard periodic deadlines is "open" to third-party plug-in extensions. The sporadic server is used to limit the invasiveness of aperiodic tasks on the ... |
|
| The Software Engineering Institute's Second Workshop on Predictable Assembly: Landscape of Compositional Predictability |
JUN 2003 |
|
| Authors:
Judith A. Stafford; Scott Hissam; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| To further its work in predictable assembly focusing on compositional reasoning techniques, the Software Engineering Institute (SEI(SM) held its second Predictable Assembly from Certifiable Components (PACC) Workshop on January 10-11, 2003. Six leading researchers in component-based software engineering were invited to discuss topics related to compositional reasoning with members of the SEI technical staff. During the workshop, participants articulated the current state of research, identified gaps in the available technology, ... |
|
| PECT Infrastructure: A Rough Sketch |
DEC 2002 |
|
| Authors:
Scott Hissam; James Ivers; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| A prediction/enabled component technology (PECT) is an approach to achieving predictable assembly from certifiable components. A PECT consists of a component technology that has been extended with one or more reasoning frameworks that are used to predict how assemblies of components will behave. Developing and using a PECT involves a number of different activities, many of which are practical only when supported by automation. This paper investigates the nature of ... |
|
| SEI Independent Research and Development Projects |
OCT 2002 |
|
| Authors:
Steve Cross; Eileen Forrester; Scott Hissam; Rick Kazman; Linda Levine; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| Each year, the Software Engineering Institute (SEI) undertakes several Independent Research and Development (IR&D) projects. These projects serve to (a) support feasibility studies investigating whether further work by the SEI would be of potential benefit and (b)support further exploratory work to determine if there is sufficient value in eventually funding the feasibility study work as an SEI initiative. Projects are chosen based on their potential to mature and/or transition software ... |
|
| Predictable Assembly of Substation Automation Systems: An Experiment Report Second Edition |
SEP 2002 |
|
| Authors:
Scott Hissam; John Hudak; James Ivers; Mark Klein; Magnus Larsson; Gabriel Moreno; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| The Predictable Assembly from Certifiable Components (PACC) initiative at the Software Engineering Institute (SEISM) is developing methods and technologies for predictable assembly. A software development activity that builds systems from components is predictable if the runtime behavior of an assembly of components can be predicted from known properties of components and their patterns of interactions (connections), and if these predictions can be objectively validated. A component is certifiable if these ... |
|
| Predictable Assembly of Substation Automation Systems: An Experiment Report |
SEP 2002 |
|
| Authors:
Scott Hissam; John Hudak; James Ivers; Mark Klein; Magnus Larsson; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| The Predictable Assembly from Certifiable Components (PACO) initiative at the Software Engineering Institute (SEIsM) is developing methods and technologies for predictable assembly. A software development activity that builds systems from components is predictable if the runtime behavior of an assembly of components can be predicted from known properties of components and their patterns of interactions (connections), and if these predictions can be objectively validated. A component is certifiable if these ... |
|
| Perspectives on Open Source Software |
NOV 2001 |
|
| Authors:
Scott Hissam; Charles B. Weinstock; Daniel Plakosh; Jayatirtha Asundi; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| Open source software (OSS) is emerging as the software community's next "silver bullet" and appears to be playing a significant role in the acquisition and development plans of the Department of Defense (DoD) and industry. Yet, as with all previous silver bullets, there are problems with blindly embracing the 055 paradigm. To become familiar with the benefits and pitfalls of using 055, the Software Engineering Institute (SEl) undertook an internally ... |
|
| Securing Internet Sessions With Sorbet |
JUL 1999 |
|
| Authors:
Fred Long; Scott Hissam; Robert C. Seacord; John Robert; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| More and more organizations are using intranets, and even the Internet, as the communications media for important data. However, such communications media are inherently insecure and subject to hijacking. To secure these connections, mechanisms must be built on top of the underlying communications facilities. In this paper, we discuss one such security mechanism and describe an implementation using common object request broker architecture (CORBA) based interceptors. |
|
| COTS in the Real World: A Case Study in Risk Discovery and Repair |
JUN 1999 |
|
| Authors:
Scott Hissam; Daniel Piakosh; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| Like many organizations in both the public and private sectors, the U.S. Department of Defense (DoD) is committed to a policy of using commercial off-the-shelf (COTS) components in new systems, particularly information systems. However, the DoD also has a long-standing set of security needs for its systems, and the pressure to adopt COTS components can come into conflict with those security constraints. The major elements of this conflict are the ... |
|
| Into the Black Box: A Case Study in Obtaining Visibility into Commercial Software |
MAR 1999 |
|
| Authors:
Daniel Plakosh; Scott Hissam; Kurt Wallnau; CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST
|
| We were recently involved with a project that faced an interesting and not uncommon dilemma. The project needed to programmatically extract private keys and digital certificates from the Netscape Communicator v4.5 database. Netscape documentation was inadequate for us to figure out how to do this. As it turns out, this inadequacy was intentional Netscape was concerned that releasing this information might possibly violate export control laws concerning encryption technology. Since ... |
|
Reports by Author
