Security Engineering Risk Analysis (SERA): Designing Security into Software-Reliant Systems

Abstract

In this podcast, CERT researcher Christopher Alberts introduces the SERA Framework, a systematic approach for analyzing complex security risks in software-reliant systems and systems of systems early in the lifecycle. "What we're trying to do is build security in by modeling risk early in the lifecycle and then explicitly articulating what that risk is and proactively implementing controls to counteract that risk."

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2015
Accession Number
AD1147056

Entities

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Cyber-Physical Systems
  • Cybersecurity
  • Cycles
  • Engineering
  • Insider Threats
  • Life Cycles
  • Risk
  • Risk Analysis
  • Risk Factors
  • Risk Management
  • Security
  • Situational Awareness
  • Software Assurance
  • Software Development
  • Supply Chain
  • System Of Systems
  • Threats
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Team-Based Human-Centered Cognitive Task Decision Making and Information Performance.