Affiliation:
1. Sandia National Laboratories* P.O. Box 5800 Albuquerque NM 87185‐1371
2. Sandia National Laboratories P.O. Box 5800 Albuquerque NM 87185‐1006
3. Sandia National Laboratories P.O. Box 5800 Albuquerque NM 87185‐1371
4. Sandia National Laboratories P.O. Box 5800 Albuquerque NM 87185‐0152
Abstract
AbstractSystems security engineering (SSE) faces new internal (e.g., increased digitization) and external (e.g., adversary capabilities) obstacles as systems increase in complexity and are deployed to increasingly challenging operating environments. Legacy approaches heavily rely on individual, physical, digital, or personnel domain‐specific strategies for security. Such segmented responses helped initiate efforts by the INCOSE systems security working group to identify fundamental elements of SSE. One of these fundamental elements is security orchestration, where the SSE goal is to coordinate between previously disparate security solutions. Multilayer network‐based approaches seemingly provide the logical structure and mathematical foundation to conduct security orchestration for “tightly coupled coordinated system defense in cyber‐relevant time.” Within multilayer networks, the ability to identify and manipulate cross‐domain (e.g., intralayer) connections that influence security performance measures demonstrates an enhanced level of security orchestration. As such, multilayer networks support the future of SSE efforts to mitigate real‐world complexities, innovative adversaries, and disruptive technologies. After describing security orchestration as a concept and foundational element, this paper explores how multilayer network models can enhance orchestration systems security engineering. Additionally, a demonstration case of systems security for a high consequence facility (as a complex system) is followed insights and implications for incorporating orchestration in the future of systems security.