Software update is an important mechanism by which security changes and improvements are made in software, and this seemingly simple concept encompasses a wide variety of practices, mechanisms, policies, and technologies. To explore the landscape further, the Forum on Cyber Resilience hosted a workshop featuring invited speakers from government, the private sector, and academia. This publication summarizes the presentations and discussions from the workshop.
Table of Contents
|1 Policy Considerations: The Intersection of Public Values and Private Infrastructure||7-13|
|2 Technical Considerations for Secure Software Updates||14-18|
|3 Microsoft's Approach to Software Updates||19-23|
|4 Update Issues for Open Source Software||24-29|
|5 Cisco's Approach to Software Updates||30-35|
|6 Ensuring Robust Firmware Updates||36-41|
|7 Updates in the Consumer Electronics Industry||42-46|
|8 Software Updates in Automotive Electronic Control Units||47-52|
|9 The NIST Perspective on Software Updates||53-58|
|10 Protecting Consumers from Software Update Risks||59-62|
|Appendix A: Workshop Agenda and Participants List||73-74|
|Appendix B: Steering Committee Biographies||75-77|
|Appendix C: Speaker Biographies||78-83|
The National Academies Press and the Transportation Research Board have partnered with Copyright Clearance Center to offer a variety of options for reusing our content. You may request permission to:
For most Academic and Educational uses no royalties will be charged although you are required to obtain a license and comply with the license terms and conditions.
For information on how to request permission to translate our work and for any other rights related query please click here.
For questions about using the Copyright.com service, please contact:
Copyright Clearance Center
22 Rosewood Drive
Danvers, MA 01923
Tel (toll free): 855/239-3415 (select option 1)
Loading stats for Software Update as a Mechanism for Resilience and Security: Proceedings of a Workshop...