A Framework for Understanding, Prioritizing, and Applying Systems Security Engineering Processes, Activities, and Tasks

Abstract

Current systems security practices lack an effective approach to prioritize and tailor systems security efforts to develop and field secure systems in challenging operational environments, which results in business and mission stakeholders becoming more susceptible to an array of disruptive events. This work informs Systems Engineers on recent developments in the field of system security engineering and provides a framework for more fully understanding the application of Systems Security Engineering (SSE) processes, activities, and tasks as described in the recently released National Institute of Standards and Technology (NIST) Special Publication 800-160. This SSE framework uniquely offers a repeatable and tailorable methodology that allows system developers to focus on high Return-on-Investment (RoI) SSE processes, activities, and tasks to more efficiently meet stakeholder protection needs and deliver trustworthy secure systems.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 23, 2017
Accession Number
AD1054676

Entities

People

  • Stephen Khou

Organizations

  • Air Force Institute of Technology

Tags

Communities of Interest

  • Cyber
  • Engineered Resilient Systems
  • Human Systems
  • Space
  • Weapons Technologies

DTIC Thesaurus Topics

  • Air Force
  • Business Administration
  • Commerce
  • Computer Network Security
  • Computers
  • Cyberattacks
  • Cybersecurity
  • Cyberspace Operations
  • Engineering
  • Engineers
  • Information Security
  • Information Systems
  • Management Personnel
  • Reliability
  • Software Development
  • Students
  • Systems Engineering

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Systems Analysis and Design