Democratizing Systems Security-Reference-Cited by-同舟云学术

Democratizing Systems Security

Published:2023-07 Issue:1 Volume:33 Page:86-97
ISSN:2334-5837
Container-title:INCOSE International Symposium
language:en
Short-container-title:INCOSE International Symp

Author:

Dove Rick¹,Winstead Mark²,Dunlap Holy²,Hause Matthew³,Scalco Aleksandra⁴,Willett Keith⁵,Williams Adam D.⁶,Wilson Beth¹

Affiliation:

1. Independent

2. MITRE Corp.

3. SSI

4. INCOSE

5. US Dept. of Defense

6. Sandia National Labs

Abstract

AbstractAs systems security joins the top concerns of systems engineering, the availability and affordability of already scarce security expertise presents a resource barrier and raises questions about the nature of competency needed in the systems engineering team. Workshops in 2022 exploring the eleven strategies outlined in the 2021 roadmap for Security in the Future of Systems Engineering revealed one strategy as centrally synergistic with all the other ten: Stakeholder Alignment. Investigating means and effects of aligning stakeholders on security requirements led to the understanding that security expressed as loss‐driven needs and capabilities would be accessible to everyone, independent of how those needs and capabilities would be realized. This article makes a case for achieving stakeholder security alignment as a means to efffectualize security as a foundational perspective in system design and actualize security proficiency in the SE team.

Publisher

Wiley

Subject

Automotive Engineering

Reference10 articles.

1. Dove R. K.Willett T.McDermott H.Dunlap D. P.MacNamara andC.Ocker.2021.Security in the Future of Systems Engineering (FuSE) a Roadmap of Foundational Concepts. INCOSE International Symposium Virtual: July 17–22.http://www.parshift.com/s/210717IS21-FuseSecurityRoadmap.pdf

2. Horkoff J. F. BasakAydemir E.Cardoso T.Li A.Mate E.Paja M.Salnitri L.Piras J.Mylopoulos andP.Giorgini.2017.Goal-Oriented Requirements Engineering: An Extended Systematic Mapping Study. Requirements Engineering Springer.https://link.springer.com/content/pdf/10.1007/s00766-017-0280-z.pdf

3. Mead N. R. E. D.Hough andT. R.StehneyII.2005.Security Quality Requirements Engineering (SQUARE) Methodology. Systems Engineering Institute Pittsburgh PA. November.https://resources.sei.cmu.edu/asset_files/TechnicalReport/2005_005_001_14594.pdf

4. Ross R. M.Winstead M.McEvilley.2022.Engineering Trustworthy Secure Systems. NIST Special Publication 800-160v1r1. National Institute of Standards and Technology Gaithersburg MD. November.https://doi.org/10.6028/NIST.SP.800-160v1r1

5. Strategic value alignment for information security management: a critical success factor analysis

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Long Term Trends in Security Threats and an Approach for Integrating Them into System Architecture and Design;INCOSE International Symposium;2024-07

2. Security Interpretations and Elaborations on Systems Engineering Principles;INCOSE International Symposium;2024-07

3. Building a Scientific Foundation for Security: Multilayer Network Model Insights for System Security Engineering;INCOSE International Symposium;2024-07

4. Secure Design: A Principled Approach for Systems Engineers;INCOSE International Symposium;2024-07