Integrating the Master of Software Assurance Reference Curriculum into the Model Curriculum and Guidelines for Graduate Degree Programs in Information Systems

Abstract : Training personnel to assure the secure development, sustainment, and acquisition of software code is a national priority. However, in the secure software domain, there is no single, commonly accepted point of reference to direct software assurance education and training. In response to this problem, the CERT(Registered Trademark) Program at Carnegie Mellon University's Software Engineering Institute recently led the development of a Master of Software Assurance (MSwA) Reference Curriculum. This report examines how the recommendations of the MSwA Reference Curriculum might be integrated into the model curriculum recommendations for a Master of Science in Information Systems (MSIS). This integration is important because IS programs constitute a key portion of computer education programs in the United States. The report describes the content areas of the MSIS curriculum that appear to be most relevant to secure software assurance practice. It also details the places in the current MSIS curriculum model where recommendations of the MSwA Reference Curriculum appear to fit. In addition, the report explains how those recommendations can be integrated into a conventional MSIS curriculum and provides an example of an existing MSIS curriculum that embodies them.

[1]  Paul Gray,et al.  MSIS 2006: Model Curriculum and Guidelines for Graduate Degree Programs in Information Systems , 2006, Commun. Assoc. Inf. Syst..

[2]  Alain Abran,et al.  The Guide to the Software Engineering Body of Knowledge , 1999, IEEE Softw..

[3]  Thomas McGibbon,et al.  Software Security Assurance: A State-of-Art Report (SAR) , 2007 .

[4]  Paul Gray,et al.  MSIS 2000: Model Curriculum and Guidelines for Graduate Degree Programs in Information Systems , 2000, Commun. Assoc. Inf. Syst..

[5]  Nancy R. Mead,et al.  Software Assurance Curriculum Project Volume I: Master of Software Assurance Reference Curriculum , 2010 .

[6]  Daniel L. Sherrell,et al.  Communications of the Association for Information Systems , 1999 .

[7]  Robert J. Kauffman,et al.  50th Anniversary Article: The Evolution of Research on Information Systems: A Fiftieth-Year Survey of the Literature in Management Science , 2004, Manag. Sci..

[8]  M. Pursley Report Documentation Page Form Approved Omb No. 0704-0188 Please Do Not Return Your Form to the above Address. 1. Report Date (dd-mm-yyyy) Final Technical Report Receiver Statistics for Cognitive Radios in Dynamic Spectrum Access Networks Onr , 2007 .

[9]  John Impagliazzo,et al.  Professional Accreditation of Information Systems Programs , 2002, Commun. Assoc. Inf. Syst..

[10]  Jeffrey A. Ingalsbe,et al.  Integrating Software Assurance Knowledge Into Conventional Curricula , 2008 .

[11]  S. Engle The Software Assurance CBK and University Curricula , 2006 .

[12]  Alain Abran,et al.  Guide to the Software Engineering Body of Knowledge : 2004 Version , 2005 .

[13]  Mark A. Ardis,et al.  SEI Report on Graduate Software Engineering Education , 1989, CSEE.

[14]  Art Pyster,et al.  Software Engineering 2009(GSwE2009): Curriculum Guidelines for Graduate Degree Programs in Software Engineering , 2009 .