Balisage Paper: Systems security assurance as (micro) publishing
Declarative markup for systems description and assessment
July 27 - 31, 2020
The materials listed below were provided by the speaker as supplements to a
presentation at Balisage. These materials may include the slides or visuals used in
the
presentation; supplementary material, such as code samples or a demonstration application;
and/or the paper accompanying the presentation (if it has not been provided in XML).
These
materials have been zipped for easy download and are identified by a brief description
of
the contents. The materials themselves are untouched
, that is, they
have not been tested or edited by Balisage: The Markup Conference or by Mulberry
Technologies, Inc. As such, they are included on this website AS IS
,
i.e., as provided by the speaker, with no warranties, express or otherwise, made by
Balisage
or Mulberry.
Slides and Materials
- Bal2020-Piez-slides-pptx.zip: Presentation slides in Microsoft PowerPoint (pptx)
- Bal2020-Piez-slides-pdf.zip: Presentation slides in Adobe PDF
Declarative
Markup: An Annotated Bibliography.
See
https://markupdeclaration.org/resources/bibliography.html.
Joint Task Force Transformation
Initiative. Risk management framework for information systems
and organizations: a system life cycle approach for security and
privacy.
National Institute of Standards and Technology,
Gaithersburg, MD, NIST SP 800-37r2, Dec. 2018. doi:https://doi.org/10.6028/NIST.SP.800-37r2.
Lubell, Joshua. Integrating Top-down and Bottom-up
Cybersecurity Guidance using XML.
Presented at Balisage: The Markup
Conference 2016, Washington, DC, August 2 - 5, 2016. In Proceedings
of Balisage: The Markup Conference 2016. Balisage Series on Markup
Technologies, vol. 17 (2016). doi:https://doi.org/10.4242/BalisageVol17.Lubell01.
Lubell, Joshua. Using DITA to Create Security
Configuration Checklists: A Case Study.
Presented at Balisage: The
Markup Conference 2017, Washington, DC, August 1 - 4, 2017. In
Proceedings of Balisage: The Markup Conference 2017. Balisage Series
on Markup Technologies, vol. 19 (2017). doi:https://doi.org/10.4242/BalisageVol19.Lubell01.
Lubell, Joshua. SCAP Composer: A DITA Open Toolkit Plug-in
for Packaging Security Content.
Presented at Balisage: The Markup
Conference 2019, Washington, DC, July 30 - August 2, 2019. In
Proceedings of Balisage: The Markup Conference 2019. Balisage Series
on Markup Technologies, vol. 23 (2019). doi:https://doi.org/10.4242/BalisageVol23.Lubell01.
Lubell, Joshua. A Document-based View of the Risk Management Framework.
Presented at Balisage: The Markup Conference 2020, Washington, DC, July 27 - 31,
2020. In Proceedings of Balisage: The Markup Conference 2020. Balisage Series on Markup Technologies, vol. 25 (2020). doi:https://doi.org/10.4242/BalisageVol25.Lubell01.
McLuhan, Marshall. Understanding Media. 1964. Cambridge and London: The MIT Press, 1994.
Office of Management and Budget Circular A-130. Managing Information as a Strategic Resource, July 2016. https://www.whitehouse.gov/sites/whitehouse.gov/files/omb/circulars/A130/a130revised.pdf.
OSCAL:
the Open Security Controls Assessment Language.
https://pages.nist.gov/OSCAL/ (accessed Mar. 24,
2020).
Piez, Wendell.
Fractal information is.
Presented at Balisage: The Markup
Conference 2018, Washington, DC, July 31 - August 3, 2018. In
Proceedings of Balisage: The Markup Conference 2018. Balisage Series
on Markup Technologies, vol. 21 (2018). doi:https://doi.org/10.4242/BalisageVol21.Piez01.
Piez, Wendell.
The Open Security Controls Assessment Language (OSCAL):
schema and Metaschema.
In Proceedings of Balisage: The Markup Conference 2019.
Balisage Series on Markup Technologies, vol. 23 (2019). doi:https://doi.org/10.4242/BalisageVol23.Piez01.
Piez, Wendell.
Beyond the Procedural vs Descriptive Distinction.
Extreme Markup Languages 2001. Archived at
http://wendellpiez.com/resources/publications/beyonddistinction.pdf.
Tillett,
Barbara. What is FRBR? A Conceptual Model for the
Bibliographic Universe.
Library of Congress Cataloging
Distribution Service. Revised February 2004. Archived at
https://www.loc.gov/cds/downloads/FRBR.PDF.
Walsh, Norman, and Bethan Tovey. The Markup Declaration.
Presented at Balisage: The Markup Conference 2018, Washington, DC,
July 31 - August 3, 2018. In Proceedings of Balisage: The Markup
Conference 2018. Balisage Series on Markup Technologies, vol. 21
(2018). doi:https://doi.org/10.4242/BalisageVol21.Tovey01.
XQuery and XPath Data Model 3.1. https://www.w3.org/TR/xpath-datamodel/.