Life-Cycle Models for Survivable Systems (2000) [1 citations — 0 self]
Abstract:
Today’s large-scale, highly distributed, networked systems improve the efficiency and effectiveness of organizations by permitting whole new levels of organizational integration. However, such integration is accompanied by elevated risks of intrusion and compromise. Incorporating survivability capabilities into an organization’s systems can mitigate these risks. As an emerging discipline, survivability builds on related fields of study (e.g., security, fault tolerance, safety, reliability, reuse, performance, verification, and testing) and introduces new concepts and principles. Survivability focuses on preserving essential services, even when systems are penetrated and compromised [Anderson 97, Ellison 99]. Current software development life-cycle models are not focused on creating survivable systems, and often exhibit shortcomings in developing systems with a high degree of assurance of survivability [Marmor-Squires 88]. If addressed at all, survivability is often relegated to a separate thread of project activity, and treated as an add-on property. This isolation of survivability considerations from primary system development tasks results in an unfortunate separation of concerns. Survivability should be integrated and treated on a par with other system properties, to develop systems with required functionality and performance that can also withstand failures and compromises. Important design
Citations
| 69 | Survivable network systems: An emerging discipline (cmu/sei-97-tr-013 – Ellison, Fisher, et al. - 1997 |
| 6 | Studies of Cyberspace Security Issues and the Concept of a U.S – Anderson, Hearn, et al. - 1997 |
| 3 | Issues in Process Models and Integrated Environments for Trusted Systems Development – MarmorSquires, Rougeau - 1988 |
