Security assessment of systems of systems

Olivero M. A., Bertolino A., Domínguez Mayo F. J., Escalona M. J., Matteucci I.

Security assessment  Red Requirements  Blue Requirements  System of systems 

Engineering Systems of Systems is one of the new challenges of the last few years. This depends on the increasing number of systems that must interact one with another to achieve a goal. One peculiarity of Systems of Systems is that they are made of systems able to live on their own with well-established functionalities and requirements, and that are not necessarily aware of the joint mission or prepared to collaborate. In this emergent scenario, security is one crucial aspect that must be considered from the very beginning. In fact, the security of a System of Systems is not automatically granted even if the security of each constituent system is guaranteed. The aim of this paper is to address the problem of assessing security properties in Systems of Systems. We discuss the specific security aspects of such emergent systems, and propose the TeSSoS approach, which includes modelling and testing security properties in Systems of Systems and introduces the Red and Blue Requirements Specification concepts.

Source: SESoS 2019 - 2019 IEEE/ACM 7th International Workshop on Software Engineering for Systems-of-Systems and WDES 2019 - 13th Workshop on Distributed Software Development, Software Ecosystems and Systems-of-Systems, pp. 62–65, Montreal, Quebec, Canada, 28-28 May, 2019

Metrics