1.3.2 A Generic, Adaptive Systems Engineering Information Model

INCOSE International Symp

2008

Self Cite

Abstract. System design, development and operational activities are monitored and evaluated to facilitate proper system security management in all phases of the system life-cycle. Effective system security metrics must address all phases of the system life-cycle as well as the associated organizational elements that interact during the system life-cycle to produce and operate the system of interest. A single system security metric, built from multiple components, is presented here as a fundamental system management security metric. This single technical security metric is used to support and evaluate the allocation of corporate and program resources, including time and budget.Introduction. The current state of the international information technology (IT) infrastructure is an artifact of over twenty five years of explosive system and infrastructure growth. This phenomenal growth was based, in the beginning, on a few architectural and operational principles relating to open systems interconnection and open network interfaces. As the systems developed, the original system architectural principles were augmented with commercial and business decisions aimed at market dominance, "first-mover" status and system ease-of-use features. These factors, taken as a collective whole, created an IT infrastructure of physical components, software products and computing services that are not naturally secure (Schneier 2007). The value added by network-enabled capabilities must now be evaluated and balanced against the expected value loss from the existing, insecure, IT infrastructure.The daily challenge facing current system and organizational managers is the balancing of the great value gained from network-centric and network-enabled systems with the increasing security threats associated with network components that are fundamentally insecure. Assisting and guiding IT and corporate managers in the journey from high-value, high-threat IT networks to a future of high-value, highly secure IT networks is the primary purpose of the secure adaptive response potential (SARP) system security metric.

Section: System Security Framework and Evaluation Structurementioning

confidence: 99%

6.3.1 Secure Adaptive Response Potential (SARP): A System Security Metric

Simpson

INCOSE International Symp

2008

Self Cite

7.4.2 Development and Application of Abstract Relation Types for Use in Systems and System‐of‐Systems Design and Evaluation

Simpson¹,

INCOSE International Symp

2007

Self Cite

relation types (ART) are developed to represent, describe and establish a computational framework for a system. An abstract relation type is closely related to and builds upon two fundamental ideas. The first idea is the binary relation and structural modeling techniques developed by John N. Warfield. The second idea is the concept of abstract data types. These two ideas are combined to create an abstract relation type that provides a structured representation and computational method for systems and system components. The complete system description approach is based on six abstract relation types: context, concept, functions, requirements, architecture, and test (CCFRAT). When combined with digraphs and other graphical representations of the matrix form, ART provides a powerful tool for the communication of complex system interactions to large system design teams.

System Evaluation and Description Using Abstract Relation Types (ART)

Simpson¹,

2007 1st Annual IEEE Systems Conference

2007

Self Cite

Two abstract relation types (ART) represented as matrices, directed graphs or are developed to represent, describe and lattices [2]. The strong tie between the matrix establish a computational framework for a form and graphical form of binary relations provide system. An abstract relation type is closely an excellent tool for system evaluation related to and builds upon two fundamental computation and communication. Structured ideas. The first idea is the binary relation and group techniques that are based on binary structural modeling techniques developed by relations and graph theory have been successfully John N. Warfield. The second idea is the used in the evaluation of large systems [10]. concept of abstract data types. These two ideas are combined to create an abstract ART are an important tool used to group relation type that provides a structured contextual system relations with a set of visual representation and computational method for and computational techniques that are used to systems and system components.The reason and communicate about systems. A well complete system description approach is defined set of ART will provide a common system based on six abstract relation types: context, technical evaluation language, approach and concept, functions, requirements, computational set. architecture, and test (CCFRAT). When