Architectural Refinement for the Design of Survivable Systems

This paper describes a process for systematically refining an enterprise system architecture to resist, recognize, and recover from deliberate, malicious attacks by applying reusable design primitives that help ensure the survival of the enterprise mission. Systems of interest may be unbounded; that is, have no central administration and no unified security policy. The survivable architecture refinement is an iterative risk-driven process which adopts the structure of Boehm's Spiral Model. The cycles of the spiral structure represent different types of attack that need to be considered network-based attacks, application-based attacks, and data-content attacks. We illustrate our survivable architecture refinement process through its application to e-commerce. E-commerce examples are representative of the lack of full control and visibility that characterize unbounded systems.

PDF [178 KB]

Authors

Robert J. Ellison

Andrew P. Moore

This report is related to the following area(s) of work:

Software Architecture

Technical Note
CMU/SEI-2001-TN-008
October 2001

Cite This Report

SEI:

Ellison, Robert; & Moore, Andrew. Architectural Refinement for the Design of Survivable Systems (CMU/SEI-2001-TN-008). Software Engineering Institute, Carnegie Mellon University, 2001. http://www.sei.cmu.edu/library/abstracts/reports/01tn008.cfm

IEEE:

R. Ellison, and A. Moore, "Architectural Refinement for the Design of Survivable Systems," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Note CMU/SEI-2001-TN-008, 2001. http://www.sei.cmu.edu/library/abstracts/reports/01tn008.cfm

APA:

Ellison, R., & Moore, A. (2001). Architectural Refinement for the Design of Survivable Systems (CMU/SEI-2001-TN-008). Retrieved May 24, 2013, from the Software Engineering Institute, Carnegie Mellon University website: http://www.sei.cmu.edu/library/abstracts/reports/01tn008.cfm

CHI:

Ellison, Robert, and Andrew Moore. Architectural Refinement for the Design of Survivable Systems (CMU/SEI-2001-TN-008). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2001. http://www.sei.cmu.edu/library/abstracts/reports/01tn008.cfm

MLA:

Ellison, R., & Moore, A. 2001. Architectural Refinement for the Design of Survivable Systems (Technical Report CMU/SEI-2001-TN-008). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://www.sei.cmu.edu/library/abstracts/reports/01tn008.cfm

Find Us Here

Find us on Youtube  Find us on LinkedIn  Find us on twitter  Find us on Facebook

Share This Page

Share on Facebook  Send to your Twitter page  Save to del.ico.us  Save to LinkedIn  Digg this  Stumble this page.  Add to Technorati favorites  Save this page on your Google Home Page 

For more information

Contact Us

info@sei.cmu.edu

412-268-5800

Help us improve

Visitor feedback helps us continually improve our site.

Please tell us what you
think with this short
(< 5 minute) survey.