Premium
6.5.1 Information System Security Protection Levels—Enabler for a Secure Millennium National Air‐Space System
Author(s) -
Keblawi Feisal,
Fujisaki Norm,
McGowan Shirley Brewer,
Sullivan Dick
Publication year - 2003
Publication title -
incose international symposium
Language(s) - English
Resource type - Journals
ISSN - 2334-5837
DOI - 10.1002/j.2334-5837.2003.tb02655.x
Subject(s) - computer security , critical infrastructure protection , national security , business , critical infrastructure , aviation , work (physics) , risk analysis (engineering) , engineering , computer science , political science , mechanical engineering , law , aerospace engineering
Critical infrastructures, such as the National Airspace System (NAS), offer a challenging set of information security and systems engineering problems. In 1997, the President's Commission on Critical Infrastructure Protection made protecting critical infrastructures in cyberspace a part of the national agenda i . Post 9/11, the flying public expects the Federal Aviation Administration (FAA) to apply the right level of focus to ensure safe air travel. Besides understanding the changing threat environment and managing wide‐ranging vulnerabilities, progress depends on improving systems engineering approaches that unify cyber security in mammoth infrastructures such as the NAS. An important ingredient to the FAA's success lies not only in the technology, but also in the agility of corporate infrastructures that protect the NAS. Corporate security applies to the people and the processes that work behind the scenes to integrate appropriate technology and processes to obtain adequate and timely levels of security. As well, corporate security seeks sufficient funding to support the overarching goals for FAA “Information System Security (ISS) Protection Levels,” described here. The ISS Levels offer a strategy for achieving agile and survivable cyber protection for complex systems of systems.