Litcius/Paper detail

A model-based methodology to support systems security design and assessment

Avi Shaked

2023Journal of Industrial Information Integration13 citationsDOIOpen Access PDF

Abstract

Addressing cybersecurity aspects while designing systems is challenging. As our systems increasingly rely on digital technology to perform, security and resilience aspects need to be considered during the system design process. However, the integration of pertinent information into the systems engineering lifecycle is not trivial, as it is characterized by following verbose guidelines and documentation, and has no practical, model-based methodology to support threat-aware design of systems. In this article, we address this gap by presenting an integrative, model-based methodology to support the design and assessment of systems' security aspects. We discuss the methodology's design, specifically with respect to system development scenarios, and detail industrial case studies demonstrating the applicability of the methodology.

Topics & Concepts

DocumentationSystems engineeringResilience (materials science)Process (computing)Computer scienceSystems designEngineeringRisk analysis (engineering)Process managementEngineering managementPhysicsMedicineOperating systemProgramming languageThermodynamicsSystems Engineering Methodologies and ApplicationsSafety Systems Engineering in AutonomySoftware Engineering Techniques and Practices