A Top Down Approach for Eliciting Systems Security Requirements for a Notional Autonomous Space System

Mailloux, Logan O.; Span, Martin; Mills, Robert F.; Young, William

doi:10.1109/syscon.2019.8836929

Cited by 11 publications

(8 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Khan, Madnick & Moulton (2018) demonstrated the implementation of STPA-Sec to identify security vulnerabilities of a central utilities plant gas turbine use case in industrial control systems. Mailloux et al (2019) used the STPA-Sec to elicit systems security requirements for a notional autonomous space system. Carter et al (2018) used STPA-Sec with a previous information elicitation process to analyze a small reconnaissance unmanned aerial vehicles.…”

Section: Stpa-sec Applications and Gapsmentioning

confidence: 99%

Data-flow-based adaption of the System-Theoretic Process Analysis for Security (STPA-Sec)

Wagner

Luo

2021

PeerJ Computer Science

View full text Add to dashboard Cite

Security analysis is an essential activity in security engineering to identify potential system vulnerabilities and specify security requirements in the early design phases. Due to the increasing complexity of modern systems, traditional approaches lack the power to identify insecure incidents caused by complex interactions among physical systems, human and social entities. By contrast, the System-Theoretic Process Analysis for Security (STPA-Sec) approach views losses as resulting from interactions, focuses on controlling system vulnerabilities instead of external threats, and is applicable for complex socio-technical systems. However, the STPA-Sec pays less attention to the non-safety but information-security issues (e.g., data confidentiality) and lacks efficient guidance for identifying information security concepts. In this article, we propose a data-flow-based adaption of the STPA-Sec (named STPA-DFSec) to overcome the mentioned limitations and elicit security constraints systematically. We use the STPA-DFSec and STPA-Sec to analyze a vehicle digital key system and investigate the relationship and differences between both approaches, their applicability, and highlights. To conclude, the proposed approach can identify information-related problems more directly from the data processing aspect. As an adaption of the STPA-Sec, it can be used with other STPA-based approaches to co-design systems in multi-disciplines under the unified STPA framework.

show abstract

Section: Stpa-sec Applications and Gapsmentioning

confidence: 99%

Data-flow-based adaption of the System-Theoretic Process Analysis for Security (STPA-Sec)

Wagner

Luo

2021

PeerJ Computer Science

View full text Add to dashboard Cite

show abstract

“…Khan et al (2018) demonstrated the implementation of STPA-Sec to identify security vulnerabilities of a central utilities plant gas turbine use case in industrial control systems. Mailloux et al (2019) used the STPA-Sec to elicit systems security requirements for a notional autonomous space system. Carter et al (2018) used STPA-Sec with a previous information elicitation process to analyze a small reconnaissance unmanned aerial vehicles.…”

Section: Stpa-sec Applications and Gapsmentioning

confidence: 99%

Peer Review #1 of "Data-flow-based adaption of the System-Theoretic Process Analysis for Security (STPA-Sec) (v0.2)"

2021

View full text Add to dashboard Cite

Security analysis is an essential activity in security engineering to identify potential system vulnerabilities and specify security requirements in the early design phases. Due to the increasing complexity of modern systems, traditional approaches lack the power to identify insecure incidents caused by complex interactions among physical systems, human and social entities. By contrast, the System-Theoretic Process Analysis for Security (STPA-Sec) approach views losses as resulting from interactions, focuses on controlling system vulnerabilities instead of external threats, and is applicable for complex sociotechnical systems. However, the STPA-Sec pays less attention to the non-safety but information-security issues (e.g. data confidentiality) and lacks efficient guidance for identifying information security concepts. In this paper, we proposed a data-flow-based adaption of the STPA-Sec (named STPA-DFSec) to overcome the mentioned limitations and elicit security constraints systematically. We used the STPA-DFSec and STPA-Sec to analyze a vehicle digital key system and investigated the relationship and differences between both approaches, their applicability, and highlights. To conclude, the proposed approach can identify information-related problems more directly from the data processing aspect. As an adaption of the STPA-Sec, it can be used with other STPA-based approaches to co-design systems in multi-disciplines under the unified STPA framework.

show abstract

“…The pace of this development has increased over the decades, and beginning in the 1990's it became apparent that adversaries also had the capability to attack our sensitive military cyber-enabled systems and thus began an increased focus of developing and defining cybersecurity for systems. [1] Considering these threats, systems engineering must have appropriate tools and techniques for performing systems security engineering (SSE) and analysis. For example, recent United States Department of Defense (U.S. DoD)which has historically valued systems securityupdates have expanded assessments for all cyber-physical weapon systems [2] , [3], and efforts to standardize "Secure Cyber Resilient Engineering (SCRE) are underway [4].…”

Section: Introductionmentioning

confidence: 99%

“…In 2015, the International Council of Systems Engineering (INCOSE) dedicated a section in the INCOSE handbook version 4.0 for SSE, and in 2016 the National Institute of Science and Technology (NIST) published NIST SP 800-160 volume 1 focusing on SSE. These advances in the study and application of system security in recent years are representative of the increasing criticality of security in complex cyber physical systems, and the importance of defining and maintaining security requirements in the systems engineering lifecycle processes [1]. As our reliance on remote capabilities and cyber-physical systems continues to increase, the need is to secure these assets as much as practicable.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

STPA‐Sec Analysis for DevSecOps Reference Design

Reule

Feighery

Winstead

et al. 2021

INCOSE International Symp

Self Cite

View full text Add to dashboard Cite

This work describes a top down systems security requirements analysis approach for understanding and eliciting general security requirements for securing Software Factories (SF). More specifically, the System-Theoretic Process Analysis approach for Security (STPA-Sec) is used to understand and elicit systems security requirements for SFs. The effort employs STPA-Sec on the DoD Enterprise DevSecOps Reference Design to detail a conceptual approach to analyze SFs. The intent is to develop functional-level security requirements, design-level engineering considerations, and architectural-level security specification criteria early in the system life cycle. The aim is to secure the SFs themselves, enhancing the security of resulting software generated from the SF. These details were elaborated during a summer collaborative research effort by two United States Air Force Academy Systems Engineering cadets, working with a MITRE team of subject matter expertise (SME's), and guided by their instructor. This work provides insight into a viable systems security requirements analysis approach which results in traceable security, safety, and resiliency requirements that can be designed-for, built-to, and verified with confidence.

show abstract

A Top Down Approach for Eliciting Systems Security Requirements for a Notional Autonomous Space System

Cited by 11 publications

References 5 publications

Data-flow-based adaption of the System-Theoretic Process Analysis for Security (STPA-Sec)

Data-flow-based adaption of the System-Theoretic Process Analysis for Security (STPA-Sec)

Peer Review #1 of "Data-flow-based adaption of the System-Theoretic Process Analysis for Security (STPA-Sec) (v0.2)"

STPA‐Sec Analysis for DevSecOps Reference Design

Contact Info

Product

Resources

About