Architectural Refinement for the Design of Survivable Systems

Abstract

This paper describes a process for systematically refining an enterprise system architecture to resist recognize and recover from deliberate, malicious attacks by applying reusable design primitives that help ensure the survival of the enterprise mission. Systems of interest may be unbounded; that is, have no central administration and no unified security policy. The survivable architecture refinement is an iterative risk-driven process which adopts the structure of Boehm's Spiral Model Boehm 88. The cycles of the spiral structure represent different types of attack that need to be considered - network-based attacks, application-based attacks, and data-content attacks. We illustrate our survivable architecture refinement process through its application to e-commerce. E-commerce examples are representative of the lack of full control and visibility that characterize unbounded systems.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Oct 01, 2001
Accession Number
ADA396627

Entities

People

  • Andrew P. Moore
  • Robert J. Ellison

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Commerce
  • Computer Access Control
  • Cybersecurity
  • Denial Of Service Attack
  • Detection
  • Electronic Commerce
  • Electronic Mail
  • Engineering
  • Homosexuality
  • Internet
  • Intrusion Detection
  • Network Protocols
  • Organizational Structure
  • Security
  • Software Development
  • Spiral Development
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Software Engineering.