Premium
Leveraging a System Model to Initiate Security Architecture Development for Product Lines
Author(s) -
Agrawal Angel
Publication year - 2020
Publication title -
insight
Language(s) - English
Resource type - Journals
eISSN - 2156-4868
pISSN - 2156-485X
DOI - 10.1002/inst.12308
Subject(s) - computer security model , security testing , rework , computer science , systems engineering , security engineering , security information and event management , risk analysis (engineering) , software security assurance , computer security , engineering , security service , cloud computing security , information security , embedded system , business , cloud computing , operating system
This paper presents a method for leveraging Model Based Systems Engineering to facilitate systems security architecture development, with product line engineering considerations. The sensitivity of systems security information constrains the development of the system security model. Creating a tailored subset of the system of interest (SOI) model can generate value as a system security decision driver, and serve as the cornerstone for system security model development. This establishes clear correlation points between the SOI model and system security model. Conducting this collaboration early in the SOI lifecycle enables engineers to implement security considerations in the system design, reducing the cost and schedule impact of delaying system security development. For product line systems, common features are quickly identified with their associated security considerations. Variants retain these common features, preventing rework.