Understanding Cyber Risk Quantification a Buyer's Guide

Total Page:16

File Type:pdf, Size:1020Kb

Understanding Cyber Risk Quantification a Buyer's Guide Understanding Cyber Risk Quantification A Buyer’s Guide Created for the FAIR Institute by Jack Jones, Chairman Sponsored by: Table of Contents Overview 3 Questions related to data 14 Questions related to analytics 16 Risk management program needs 3 Questions related to reporting 17 What is CRQ and how does it help? 4 Red flags 18 CRQ in a nutshell 4 “Risks” that aren’t loss event scenarios 18 CRQ value propositions 4 Scope overlap 18 Risk remediation cost-benefit analysis 5 Precise inputs and outputs 19 Other CRQ value propositions 5 Use of control standards 19 Common concerns regarding CRQ 6 Weighted values 20 Reliability 6 “Industry data” 20 Level of effort 9 “Eliminate guessing” 21 Other risk-related measurement approaches 9 “Know your organization’s risk in a very short time frame” 21 Numerically expressed ordinal risk measurement 10 Proprietary algorithms 21 Controls-focused assessments 11 Simplistic Aggregation 22 Vulnerability assessments 12 Spreadsheets 22 Credit-like scoring 12 Summary 22 Maturity model assessments 13 Addendum 24 Threat analysis 13 Questions checklist 24 Important questions 13 Red Flags checklist 26 Questions regarding utility 13 Overview Others who may benefit from this paper include industry analysts, consultants, regulators, cyber risk solution providers, and cyber risk The cyber risk landscape is increasingly impactful, complex and dynamic, and technology investors. organizations have limited resources to apply to the problem. Furthermore, every dollar spent on cyber risk management is a dollar that can’t be spent on other business or mission imperatives. This means that cyber risk Risk management program needs management programs must be able to effectively prioritize an organization’s Risk management programs exist to help their organizations cost-effectively cyber risk concerns and choose cost-effective solutions. Both of these require achieve and maintain an acceptable level of exposure to loss. Accomplishing the ability to measure cyber risk well. this — particularly within a complex and dynamic landscape like cyber risk — requires being able to do a number of things well: Unfortunately, there is a lot of confusion about cyber risk measurement methods — their inherent benefits and challenges, and what the qualities are 1. Identify/define the potential loss event scenarios that an of “good” cyber risk measurement. As a result, misperception is rampant and organization is exposed to it’s easy for organizations to leverage methods and solutions that may not fit their needs, or that may be severely flawed. This is true as well for cyber risk quantification (CRQ). 2. Understand the factors (assets, threats, and controls) that affect the probability and impact of those loss event scenarios, and how those factors interact The primary goal of this paper is to help organizations make better-informed decisions about whether CRQ is a good fit and, if so, choose a CRQ solution they can rely on. It will also provide a high-level overview of other cyber risk- 3. Continually monitor risk factor conditions related measurement approaches to provide some contrast between them and CRQ. 4. Given current and projected risk factor conditions, accurately estimate1 the probability of various loss event scenarios occurring, and This paper is organized to approximately align with the process an their likely impact if they do occur organization might go through when evaluating and selecting CRQ solutions. Specifically, it: 5. Compare current loss exposure levels against desired states ■ Discusses where cyber risk measurement fits within the cyber 6. Accurately identify opportunities to reduce risk when or where risk risk management landscape exceeds the desired state, or opportunities to increase risk when or where doing so supports other organization imperatives ■ Defines CRQ and describes its value proposition 7. Accurately and clearly communicate all of the above to appropriate ■ Reviews common concerns regarding CRQ stakeholders so that well-informed decisions can be made ■ Provides an overview of other risk-related measurement categories that are often confused with CRQ 8. Reliably execute the risk management decisions made by executive stakeholders ■ Proposes questions that should be asked of any CRQ solution provider Although this process may appear to be linear, in reality a risk management program will be doing many of these things constantly and in parallel. ■ Describes red flags that should be looked for in CRQ solutions Furthermore, because business needs evolve and the risk landscape is always in flux, the monitoring, measurement and reporting aspects of a 1 Because all measurements related to potential future events have some degree of uncertainty they are in fact estimates, regardless of how much or how little empirical data are used in the analysis Understanding Cyber Risk Quantification - A Buyer’s Guide 3 Copyright (c) 2019 FAIR Institute | All rights reserved program operate as a feedback mechanism. This enables risk management What is CRQ and how does it help? adjustments in response to changes that have occurred to the landscape, or that are expected to occur. Figure 1 below provides a high-level illustration of CRQ in a nutshell the risk management landscape. Well-established risk domains (e.g., credit risk, market risk, operational risk, and various insurance domains such as life, health, and property) have existed for some time to help organizations and individuals manage their exposure to loss — i.e., their risk. In these domains, risk is measured in terms of the probability and magnitude of loss from various scenarios (credit defaults, natural disasters, etc.). In the cyber risk domain there’s rarely any meaningful disagreement regarding risk measurement being a function of loss probability and magnitude. The more common question is what “quantification” looks like and the characteristics of good versus poor CRQ. Later in this paper we’ll discuss some of the measurement approaches that are often confused with CRQ. For now, simply recognize that loss event probability2 is expressed as a percentage (e.g., 10% probability of occurrence in the next 12 months) and magnitude is expressed as a loss of monetary value (e.g., $1.5M). When desired, these values can be combined to express risk as an annualized amount (e.g, $150,000)3. It’s important to recognize however, that measuring risk quantitatively shouldn’t be a goal in itself. What is most important is ensuring well-informed decisions through reliable and meaningful risk measurements (whether qualitative or quantitative). CRQ value propositions Prioritization Given the nature of this landscape, it is clear that the quality of risk management decision-making relies on both the Monitoring and Testing Being able to recognize which parts of the (data) and Analysis & Reporting (analytics) elements of a risk management risk landscape need to be addressed first is program. fundamental to managing loss exposure well. Historically, cybersecurity has leveraged qualitative measurements to categorize the significance of risk- Although the primary focus of this paper is on CRQ as an analysis and related concerns. However, even assuming that a reporting approach, questions related to data also will be discussed. qualitative measurement is accurate4, there remain some fairly obvious questions. For example, imagine that your organization has identified a set of risk- related concerns (Figure 2): 2 Loss event frequency is often a more useful term than probability, particularly with scenarios that can occur multiple times in a year. 3 In reality, to appropriately reflect measurement uncertainty, probability and impact should be expressed as ranges or distributions. 4 Many qualitative cyber risk measurements lack the rigor to be considered reliable. Understanding Cyber Risk Quantification - A Buyer’s Guide 4 Copyright (c) 2019 FAIR Institute | All rights reserved ■ How much more risk does the highest “high” (#1) represent than the probability or magnitude of the loss event scenarios an organization is lowest “high” (#2)? exposed to. Understanding which program elements affect which scenarios, and by how much, is foundational to effective risk management and ■ In a bucket of “high” risk-related concerns, how do you determine responsible resource stewardship. It is also instrumental in helping executive which one is highest and how would you defend that judgment? stakeholders understand the value to be gained (in terms of risk reduction) from cybersecurity investments. This information can only be achieved ■ How much more risk does the lowest “high” (#2) represent than the using CRQ. highest “medium” (#3). Other CRQ value propositions ■ What prevented #3 from landing in the “high” category, and how The ability to prioritize more effectively and choose risk remediation solutions would you defend that judgment? based on cost-benefit analyses is likely to be strong enough justification for many organizations to adopt CRQ. There are, however, other advantages as ■ If resources are applied to #1, how much less risk will result and how well, including: would you defend those results? ■ How much risk is there in total? ■ Senior executives are better able to understand the significance of cyber-related concerns when those concerns are expressed in terms that are similar to other dimensions of their problem space (e.g., ■ Why were the lines drawn where they were between high, medium, economic expressions of revenue, value, operational costs, and other and low risk? forms
Recommended publications
  • Introduction to Measurements & Error Analysis
    Introduction to Measurements & Error Analysis The Uncertainty of Measurements Some numerical statements are exact: Mary has 3 brothers, and 2 + 2 = 4. However, all measurements have some degree of uncertainty that may come from a variety of sources. The process of evaluating this uncertainty associated with a measurement result is often called uncertainty analysis or error analysis. The complete statement of a measured value should include an estimate of the level of confidence associated with the value. Properly reporting an experimental result along with its uncertainty allows other people to make judgments about the quality of the experiment, and it facilitates meaningful comparisons with other similar values or a theoretical prediction. Without an uncertainty estimate, it is impossible to answer the basic scientific question: “Does my result agree with a theoretical prediction or results from other experiments?” This question is fundamental for deciding if a scientific hypothesis is confirmed or refuted. When we make a measurement, we generally assume that some exact or true value exists based on how we define what is being measured. While we may never know this true value exactly, we attempt to find this ideal quantity to the best of our ability with the time and resources available. As we make measurements by different methods, or even when making multiple measurements using the same method, we may obtain slightly different results. So how do we report our findings for our best estimate of this elusive true value? The most common way to show the range of values that we believe includes the true value is: measurement = best estimate ± uncertainty (units) Let’s take an example.
    [Show full text]
  • Software Testing
    Software Testing PURPOSE OF TESTING CONTENTS I. Software Testing Background II. Software Error Case Studies 1. Disney Lion King 2. Intel Pentium Floating Point Division Bug 3. NASA Mars Polar Lander 4. Patriot Missile Defense System 5. Y2K Bug III. What is Bug? 1. Terms for Software Failure 2. Software Bug: A Formal Definition 3. Why do Bugs occur? and cost of bug. 4. What exactly does a Software Tester do? 5. What makes a good Software Tester? IV. Software Development Process 1. Product Components 2. What Effort Goes into a Software Product? 3. What parts make up a Software Product? 4. Software Project Staff V. Software Development Lifecycle Models 1. Big Bang Model 2. Code and Fix Model 3. Waterfall Model 4. Spiral Model VI. The Realities of Software Testing VII. Software Testing Terms and Definition 1. Precision and Accuracy 2. Verification and Validation 3. Quality Assurance and Quality Control Anuradha Bhatia Software Testing I. Software Testing Background 1. Software is a set of instructions to perform some task. 2. Software is used in many applications of the real world. 3. Some of the examples are Application software, such as word processors, firmware in an embedded system, middleware, which controls and co-ordinates distributed systems, system software such as operating systems, video games, and websites. 4. All of these applications need to run without any error and provide a quality service to the user of the application. 5. The software has to be tested for its accurate and correct working. Software Testing: Testing can be defined in simple words as “Performing Verification and Validation of the Software Product” for its correctness and accuracy of working.
    [Show full text]
  • Breathe London-NPL-Statistical Methods for Characterisation Of
    Statistical methods for performance characterisation of lower-cost sensors J D Hayward, A Forbes, N A Martin, S Bell, G Coppin, G Garcia and D Fryer 1.1 Introduction This appendix summarises the progress of employing the Breathe London monitoring data together with regulated reference measurements to investigate the application of machine learning tools to extract information with a view to quantifying measurement uncertainty. The Breathe London project generates substantial data from the instrumentation deployed, and the analysis requires a comparison against the established reference methods. The first task was to develop programs to extract the various datasets being employed from different providers and to store them in a stan- dardised format for further processing. This data curation allowed us to audit the data, establishing errors in the AQMesh data and the AirView cars as well as monitor any variances in the data sets caused by conditions such as fog/extreme temperatures. This includes writing a program to parse the raw AirView data files from the high quality refer- ence grade instruments installed in the mobile platforms (Google AirView cars), programs to commu- nicate with and download data from the Applications Program Interfaces (APIs) provided by both Air Monitors (AQMesh sensor systems) and Imperial College London (formerly King’s College London) (London Air Quality Network), and a program that automatically downloads CSV files from the DE- FRA website, which contains the air quality data from the Automatic Urban Rural Network (AURN). This part of the development has had to overcome significant challenges including the accommo- dation of different pollutant concentration units from the different database sources, different file formats, and the incorporation of data flags to describe the data ratification status.
    [Show full text]
  • EXPERIMENTAL METHOD Linear Dimension, Weight and Density
    UNIVERSITI TEKNIKAL No Dokumen: No. Isu/Tarikh: MALAYSIA MELAKA SB/MTU/T1/BMCU1022/1 4/06-07-2009 EXPERIMENTAL METHOD No. Semakan/Tarikh Jumlah Muka Surat Linear Dimension, Weight and Density 4/09-09-2009 4 OBJECTIVE Investigation of different types of equipment for linear dimension measurements and to study measurement accuracy and precision using commonly used measuring equipments. LEARNING OUTCOME At the end of this laboratory session, students should be able to 1. Identify various dimensional measuring equipments commonly used in a basic engineering laboratory. 2. Apply dimensional measuring equipments to measure various objects accurately. 3. Compare the measured data measured using different measuring equipments. 4. Determine the measured dimensional difference using different equipments correctly. 5. Answer basic questions related to the made measurement correctly. 6. Present the measured data in form of report writing according to the normal technical report standard and make clear conclusions of the undertaken tasks. THEORY Basic physical quantity is referred to a quantity which is measurable such as weight, length and time. These quantities could be combined and formed what one called the derived quantities. Some of the examples of derived quantities include parameter such as area, volume, density, velocity, force and many others. Measurement is a comparison process between standard quantities (true value) with measured quantity. Measurement apparatus complete with unit and dimension must be used in order to make a good and correct measurement. Accuracy means how close the measured value to the standard (true) value. Precision of measurement refers to repeatable values of the measurement and the results showed that its uncertainty is of the lowest degree.
    [Show full text]
  • Implementation and Performance Analysis of Precision Time Protocol on Linux Based System-On-Chip Platform
    Implementation and Performance Analysis of Precision Time Protocol on Linux based System-On-Chip Platform Mudassar Ahmed [email protected] MASTERPROJECT Kiel University of Applied Science MSc. Information Engineering in Kiel im Mai 2018 Declaration I hereby declare and confirm that this project is entirely the result of my own original work. Where other sources of information have been used, they have been indicated as such and properly acknowledged. I further declare that this or similar work has not been submitted for credit elsewhere. Kiel, May 9, 2018 Mudassar Ahmed [email protected] i Contents Declaration i Abstract iv List of Symbols and Abbreviations vii 1 Introduction 1 1.1 Research Objectives and Goals . 2 1.2 Approach . 2 1.3 Outline . 2 2 Literature Review 3 2.1 Time Synchronization . 3 2.2 Time Synchronization Technologies . 4 2.3 Overview of IEEE 1588 Precision Time Protocol (PTP) . 4 2.3.1 Scope of PTP Standard: . 5 2.3.2 Protocol Standard Messages . 5 2.3.3 Protocol Standard Devices . 6 2.3.4 Message Exchange and Delay Computation . 7 2.3.5 Protocol Hierarchy Establishment Mechanism . 9 3 PTP Infrastructure in Linux 11 3.1 Timestamping Mechanisms . 11 3.1.1 Software Timestamping . 11 3.1.2 Hardware Timestamping . 12 3.1.3 Linux kernel Support for Timestamping . 13 3.2 PTP Clock Infrastructure and Control API . 14 4 Design and Implementation 16 4.1 Tools and technologies . 16 4.1.1 LinuxPTP . 16 4.1.2 PTPd . 18 4.1.3 stress-ng . 18 4.1.4 iPerf .
    [Show full text]
  • Understanding Measurement Uncertainty in Certified Reference Materials 02 Accuracy and Precision White Paper Accuracy and Precision White Paper 03
    → White Paper Understanding measurement uncertainty in certified reference materials 02 Accuracy and Precision White Paper Accuracy and Precision White Paper 03 The importance of measurement uncertainty. This paper provides an overview of the importance of measurement uncertainty in the manufacturing and use of certified reference gases. It explains the difference between error and uncertainty, accuracy and precision. No measurement can be made with 100 percent accuracy. There is Every stage of the process, every measurement device used always a degree of uncertainty, but for any important measurement, introduces some uncertainty. Identifying and quantifying each source it’s essential to identify every source of uncertainty and to quantify the of uncertainty in order to present a test result with a statement uncertainty introduced by each source. quantifying the uncertainty associated with the result can be challenging. But no measurement is complete unless it is accompanied In every field of commerce and industry, buyers require certified by such a statement. measurements to give them assurances of the quality of goods supplied: the tensile strength of steel; the purity of a drug; the heating This white paper will provide an overview of sources of measurement power of natural gas, for example. uncertainty relating to the manufacture and use of certified reference gases. It will explain how uncertainty reported with a test result can Suppliers rely on test laboratories, either their own or third parties, be calculated and it will explain the important differences between to perform the analysis or measurement necessary to provide these uncertainty, accuracy and precision. assurances. Those laboratories in turn rely on the accuracy and precision of their test instruments, the composition of reference materials, and the rigour of their procedures, to deliver reliable and accurate measurements.
    [Show full text]
  • ECE3340 Introduction to the Limit of Computer Numerical Capability – Precision and Accuracy Concepts PROF
    ECE3340 Introduction to the limit of computer numerical capability – precision and accuracy concepts PROF. HAN Q. LE Computing errors …~ 99 – 99.9% of computing numerical errors are likely due to user’s coding errors (syntax, algorithm)… and the tiny remaining portion may be due to user’s lack of understanding how numerical computation works… Hope this course will help you on this problems Homework/Classwork 1 CHECK OUT THE PERFORMANCE OF YOUR COMPUTER CW Click open this APP Click to ask your machine the smallest number it can handle (this example shows 64-bit x86 architecture) Log base 2 of the number Do the same for the largest HW number Click to ask the computer the smallest relative difference between two number that it can tell apart. This is called machine epsilon If you use an x86 64-bit CPU, the above is what you get. HW-Problem 1 Use any software (C++, C#, MATLAB, Excel,…) but not Mathematica (because it is too smart and can handle the test below) to do this: 1. Let’s denote xmax be the largest number your computer can handle in the APP test. Let x be a number just below xmax , such as ~0.75 xmax. (For example, I choose x=1.5*10^308). Double it (2*x) and print the result. 2. Let xmin be your computer smallest number. Choose x just above it. Then find 0.5*x and print output. Here is an example what happens in Excel: Excel error: instead of giving the correct answer 3*10^308, Number just slightly less than it gives error output.
    [Show full text]
  • Accurate Measurement of Small Execution Times – Getting Around Measurement Errors Carlos Moreno, Sebastian Fischmeister
    1 Accurate Measurement of Small Execution Times – Getting Around Measurement Errors Carlos Moreno, Sebastian Fischmeister Abstract—Engineers and researchers often require accurate example, a typical mitigation approach consists of executing measurements of small execution times or duration of events in F multiple times, as shown below: a program. Errors in the measurement facility can introduce time start = get_current_time() important challenges, especially when measuring small intervals. Repeat N times: Mitigating approaches commonly used exhibit several issues; in Execute F particular, they only reduce the effect of the error, and never time end = get_current_time() eliminate it. In this letter, we propose a technique to effectively // execution time = (end - start) / N eliminate measurement errors and obtain a robust statistical The execution time that we obtain is subject to the mea- estimate of execution time or duration of events in a program. surement error divided by N; by choosing a large enough The technique is simple to implement, yet it entirely eliminates N, we can make this error arbitrarily low. However, this the systematic (non-random) component of the measurement error, as opposed to simply reduce it. Experimental results approach has several potential issues: (1) repeating N times confirm the effectiveness of the proposed method. can in turn introduce an additional unknown overhead, if coded as a for loop. Furthermore, this is subject to uncertainty in I. MOTIVATION that the compiler may or may not implement loop unrolling, meaning that the user could be unaware of whether this Software engineers and researchers often require accurate overhead is present; (2) the efficiency of the error reduction measurements of small execution times or duration of events in process is low; that is, we require a large N (thus, potentially a program.
    [Show full text]
  • Process and Quality Control and Calibration Programs of the National Bureau of Standards
    NBSIR 87-3596 Process and Quality Control and Calibration Programs of the National Bureau of Standards U.S. DEPARTMENT OF COMMERCE National Bureau of Standards Gaithersburg, MD 20899 June 1987 Final Report Prepared for: The U.S. Congress in Response to Public Law 99.574 NBSIR 87-3596 PROCESS AND QUALITY CONTROL AND CALIBRATION PROGRAMS OF THE NATIONAL BUREAU OF STANDARDS U.S. DEPARTMENT OF COMMERCE National Bureau of Standards Gaithersburg, MD 20899 June 1987 Final Report Prepared for: The U.S. Congress in Response to Public Law 99.574 U.S. DEPARTMENT OF COMMERCE, Malcolm Baldrige, Secretary NATIONAL BUREAU OF STANDARDS. Ernest Ambler. Director , , , FOREWORD 99- 574^- October charged the Public Law , enacted 28, 1986, Director of the National Bureau of Standards (NBS) to ask the Bureau's major clients about their needs for research and services related to NBS "process and quality control and calibration programs". This report is in response to that request. (Excerpt from P.L. 99-574) PROCESS AND QUALITY CONTROL AND CALIBRATION PROGRAMS Sec. 9 (a) The Director of the National Bureau of Standards shall hold discussions with representatives of Federal agencies, including the Department of Defense, the Department of Energy, the National Aeronautics and Space Administration, the Federal Aviation Administra- tion, the National Institutes of Health, the Nuclear Regulatory Commission, and the Federal Communications Commission, which use (or the contractors of which depend on) the process and quality control and calibra- tion programs of the Bureau, and with companies, organizations and major engineering societies from the private sector, in order to determine the extent of the demand for research and services under such programs the appropriate methods of paying for research and services under such programs and with willingness of , Federal agencies and the private sector to pay for such research and services.
    [Show full text]
  • Guidance for the Validation of Analytical Methodology and Calibration of Equipment Used for Testing of Illicit Drugs in Seized Materials and Biological Specimens
    Vienna International Centre, PO Box 500, 1400 Vienna, Austria Tel.: (+43-1) 26060-0, Fax: (+43-1) 26060-5866, www.unodc.org Guidance for the Validation of Analytical Methodology and Calibration of Equipment used for Testing of Illicit Drugs in Seized Materials and Biological Specimens FOR UNITED NATIONS USE ONLY United Nations publication ISBN 978-92-1-148243-0 Sales No. E.09.XI.16 *0984578*Printed in Austria ST/NAR/41 V.09-84578—October 2009—200 A commitment to quality and continuous improvement Photo credits: UNODC Photo Library Laboratory and Scientific Section UNITED NATIONS OFFICE ON DRUGS AND CRIME Vienna Guidance for the Validation of Analytical Methodology and Calibration of Equipment used for Testing of Illicit Drugs in Seized Materials and Biological Specimens A commitment to quality and continuous improvement UNITED NATIONS New York, 2009 Acknowledgements This manual was produced by the Laboratory and Scientific Section (LSS) of the United Nations Office on Drugs and Crime (UNODC) and its preparation was coor- dinated by Iphigenia Naidis and Satu Turpeinen, staff of UNODC LSS (headed by Justice Tettey). LSS wishes to express its appreciation and thanks to the members of the Standing Panel of the UNODC’s International Quality Assurance Programme, Dr. Robert Anderson, Dr. Robert Bramley, Dr. David Clarke, and Dr. Pirjo Lillsunde, for the conceptualization of this manual, their valuable contributions, the review and finali- zation of the document.* *Contact details of named individuals can be requested from the UNODC Laboratory and Scientific Section (P.O. Box 500, 1400 Vienna, Austria). ST/NAR/41 UNITED NATIONS PUBLICATION Sales No.
    [Show full text]
  • The Trade-Off Between Accuracy and Precision in Latent Variable Models of Mediation Processes
    Journal of Personality and Social Psychology © 2011 American Psychological Association 2011, Vol. 101, No. 6, 1174–1188 0022-3514/11/$12.00 DOI: 10.1037/a0024776 The Trade-Off Between Accuracy and Precision in Latent Variable Models of Mediation Processes Alison Ledgerwood Patrick E. Shrout University of California, Davis New York University Social psychologists place high importance on understanding mechanisms and frequently employ mediation analyses to shed light on the process underlying an effect. Such analyses can be conducted with observed variables (e.g., a typical regression approach) or latent variables (e.g., a structural equation modeling approach), and choosing between these methods can be a more complex and consequential decision than researchers often realize. The present article adds to the literature on mediation by examining the relative trade-off between accuracy and precision in latent versus observed variable modeling. Whereas past work has shown that latent variable models tend to produce more accurate estimates, we demonstrate that this increase in accuracy comes at the cost of increased standard errors and reduced power, and examine this relative trade-off both theoretically and empirically in a typical 3-variable mediation model across varying levels of effect size and reliability. We discuss implications for social psychologists seeking to uncover mediating variables and provide 3 practical recommendations for maximizing both accuracy and precision in mediation analyses. Keywords: mediation, latent variable, structural
    [Show full text]
  • Numeric Issues in Test Software Correctness
    NUMERIC ISSUES IN TEST SOFTWARE CORRECTNESS Robert G. Hayes, Raytheon Infrared Operations, 805.562.2336, [email protected] Gary B. Hughes, Ph.D., Raytheon Infrared Operations 805.562.2348, [email protected] Phillip M. Dorin, Ph.D., Loyola Marymount University, 310.338.0000, [email protected] Raymond J. Toal, Ph.D., Loyola Marymount University, 310.338.2773, [email protected] ABSTRACT Test system designers are comfortable with the concepts of precision and accuracy with regard to measurements achieved with modern instrumentation. In a well-designed test system, great care is taken to ensure accurate measurements, with rigorous attention to instrument specifications and calibration. However, measurement values are subjected to representation and manipulation as limited precision floating-point numbers by test software. This paper investigates some of the issues related to floating point representation of measurement values, as well as the consequences of algorithm selection. To illustrate, we consider the test case of standard deviation calculations as used in the testing of Infrared Focal Plane Arrays. We consider the concept of using statistically-based techniques for selection of an appropriate algorithm based on measurement values, and offer guidelines for the proper expression and manipulation of measurement values within popular test software programming frameworks. Keywords: measurement accuracy, preCIsIOn, floating-point representation, standard deviation, statistically based algorithm selection, Monte Carlo techniques. 1 INTRODUCTION Some well-known software bugs have resulted in security compromises, sensItive data corruption, bills for items never purchased, spacecraft crashing on other planets, and the loss of human life. Ensuring correctness of software is a necessity. We work toward software correctness via two approaches: testing and formal verification.
    [Show full text]