software engineering laboratory graduate school enhancing information assurance education with...
Post on 19-Dec-2015
216 views
TRANSCRIPT
Software Engineering LaboratoryGraduate School
Enhancing Information Assurance Education with Remote Access Laboratories
Hasan Sayani
Copyright, H. Sayani, MD, 2005 2
Software Engineering LaboratoryGraduate School
Hasan Sayani, Ph.D.
Professor and Program Director,Software Engineering and Software Development Management
3501 University Boulevard EastAdelphi, MD 20783 USA301-985-4616 Fax [email protected] www.umuc.edu
Copyright, H. Sayani, MD, 2005 3
Software Engineering LaboratoryGraduate School
• The Need to Build Robustly– To better withstand an attack– Rather than picking up the pieces later– Strategies to build better– Analogy
Copyright, H. Sayani, MD, 2005 4
Software Engineering LaboratoryGraduate School
Conventional House – Before Hurricane
Copyright, H. Sayani, MD, 2005 5
Software Engineering LaboratoryGraduate School
Conventional House – After Hurricane
Copyright, H. Sayani, MD, 2005 6
Software Engineering LaboratoryGraduate School
Correctly Constructed House
Copyright, H. Sayani, MD, 2005 7
Software Engineering LaboratoryGraduate School
An Extreme Solution – An Aerodynamic House
Copyright, H. Sayani, MD, 2005 8
Software Engineering LaboratoryGraduate School
• Thrust of the Software Engineering Laboratory:
– Build Better– Develop Good Operational Procedures– Learn from Failures– Account for New Technical Architectures– Work with New Business Structures
Copyright, H. Sayani, MD, 2005 9
Software Engineering LaboratoryGraduate School
• Build Better Software Systems– Applications– Application Data– Parametric Data– Secure the Platform– Protect Artifacts
Copyright, H. Sayani, MD, 2005 10
Software Engineering LaboratoryGraduate School
• Develop Good Operational Procedures– Protection– Back Up– Access Control– Use of AI to Detect Anomalous Behavior
Copyright, H. Sayani, MD, 2005 11
Software Engineering LaboratoryGraduate School
• Learn from Failures– Purposefully Designed– Post-mortem/Forensics
• Enable Tracing
– Corrective Measures– Incorporate into Good Practice
Copyright, H. Sayani, MD, 2005 12
Software Engineering LaboratoryGraduate School
• Account for New Technical Architectures– Enterprise Architecture– Service-Oriented Architecture
• Enterprise Service Bus• Enterprise Data Bus
– Mobile Devices
Copyright, H. Sayani, MD, 2005 13
Software Engineering LaboratoryGraduate School
• Work with New Business Structures– Out Sourcing– Contract-on-Demand (SOA)– Collaborative Work
Copyright, H. Sayani, MD, 2005 14
Software Engineering LaboratoryGraduate School
• Life Cycle for the Software Engineering Laboratory– Acquire Tools– Install– Support– Integrate into Curriculum– Evaluate– Iterate
Copyright, H. Sayani, MD, 2005 15
Software Engineering LaboratoryGraduate School
• Phased Introduction of Tools– Phase 1: Get most prominent tools
• Microsoft: Visual Studio .NET - MSWE 646, 617• Borland: Together - MSWE 646 • IBM/Rational: Enterprise Studio – MSWE 645,617• Telelogic: DOORS – MSWE 645• Microsoft: Project – MSWE 640, 617
Copyright, H. Sayani, MD, 2005 16
Software Engineering LaboratoryGraduate School
• Issues Surfaced in Phase 1– Software Distribution– Pedagogy for Integration– Legal/Financial– Management of Additional Demands on
Faculty and Students– Need for Dedicated Servers
Copyright, H. Sayani, MD, 2005 17
Software Engineering LaboratoryGraduate School
• Phase 2 and Beyond– Additional Tools within the same genre
• Allow cross-tool evaluations
– Focus on security• Purposeful Errors• Recovery• Protection
Copyright, H. Sayani, MD, 2005 18
Software Engineering LaboratoryGraduate School
• Complications Introduced by On-line classes– Cannot Just Use a Physical Lab
• Several available on campus
– Lab must be available:• Remotely, Asynchronously, 24/7
– Need for Collaborative Mechanisms• UMUC – Web Tycho• Others – Share Point, Groove Office