Security Engineering Risk Analysis (SERA): Designing Security into Software-Reliant Systems

reportActive / Technical Report | Accesssion Number: AD1147056 | Open PDF

Abstract:

In this podcast, CERT researcher Christopher Alberts introduces the SERA Framework, a systematic approach for analyzing complex security risks in software-reliant systems and systems of systems early in the lifecycle. "What we're trying to do is build security in by modeling risk early in the lifecycle and then explicitly articulating what that risk is and proactively implementing controls to counteract that risk."

Author(s):
No Author(s) Identified
Author Organization(s):
CARNEGIE-MELLON UNIV PITTSBURGH PA
Funding Organization(s):
AIR FORCE LIFE CYCLE MANAGEMENT CENTER HANSCOM AFB MA, HANSCOM AFB , MA
Document Type:
Technical Report/Technical Note
Publication Date:
2015 Jan 01
Pagination:
2

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution Code:
A - Approved For Public Release
Distribution Statement: Public Release

RECORD

Collection: TRECMS
Subject Terms
Modernization Areas:
Cyber
Communities of Interest:
Engineered Resilient Systems
Descriptor(s):
risk analysis, risk, vulnerability, cybersecurity, engineering, insider threats, security, software development, life cycles, supply chain, cyber-physical systems, risk factors, situational awareness, cycles, threats
Keyword(s):
SERA(Security Engineering Risk Analysis), Designing Security into Software Reliant Systems
Subject Categories:
Mechanical, Industrial, Civil and Marine Engineering; Mathematical and Computer Sciences
Creation Date:
2021 Sep 13
Update Date:
2022 Feb 25