首先我們應確定可信軟件的概念,在英文中可信這個詞有許多,常見的有–Trusted;Trustworthiness;Dependability;Confidence;Assurance等,其中Dependability可靠性;Confidence;Assurance確定性這三種表述我不確定是否對應軟件工程中軟件質量屬性的其它屬性,但在論文中也常用於表述軟件的可信性。
According to the DHS美國國土安全部, software assurance addresses:
Trustworthiness - No exploitable vulnerabilities exist, either maliciously or unintentionally inserted; Predictable Execution - Justifiable confidence that software, when executed, functions as intended; Conformance - Planned and systematic set of multi-disciplinary activities that ensure software processes and products conform to requirements, standards/ procedures.對軟件可信的定義比之軟件質量更強調用戶的感受,強調不易受攻擊性尤其是因內在缺陷導致的;結果是可預期的;保證的計劃的和系統的過程和產品依照要求和標準程序。因此與強調功能完備無二義性的軟件測試評估是有區別的。