期刊
JOURNAL OF INDUSTRIAL INFORMATION INTEGRATION
卷 33, 期 -, 页码 -出版社
ELSEVIER
DOI: 10.1016/j.jii.2023.100465
关键词
Model -based design; Systems security engineering; Systems specification methodology; Modeling methodology; Threat and risk assessment
Addressing cybersecurity aspects is challenging in system design, as security and resilience need to be considered. However, integrating pertinent information and following guidelines is not easy, and there is a lack of model-based methodology for threat-aware design. This article presents an integrative, model-based methodology for designing and assessing systems' security, with industrial case studies demonstrating its applicability.
Addressing cybersecurity aspects while designing systems is challenging. As our systems increasingly rely on digital technology to perform, security and resilience aspects need to be considered during the system design process. However, the integration of pertinent information into the systems engineering lifecycle is not trivial, as it is characterized by following verbose guidelines and documentation, and has no practical, model-based methodology to support threat-aware design of systems. In this article, we address this gap by presenting an integrative, model-based methodology to support the design and assessment of systems' security aspects. We discuss the methodology's design, specifically with respect to system development scenarios, and detail industrial case studies demonstrating the applicability of the methodology.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据