search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Architectural Refinement for the Design of Survivable Systems

Technical Note
By
This paper describes a process for systematically refining an enterprise system architecture to resist, recognize, and recover from deliberate, malicious attacks by applying reusable design primitives that help ensure the survival of the enterprise mission.
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2001-TN-008
DOI (Digital Object Identifier)
10.1184/R1/6572012.v1
Subjects

Abstract

This paper describes a process for systematically refining an enterprise system architecture to resist, recognize, and recover from deliberate, malicious attacks by applying reusable design primitives that help ensure the survival of the enterprise mission. Systems of interest may be unbounded; that is, have no central administration and no unified security policy. The survivable architecture refinement is an iterative risk-driven process which adopts the structure of Boehm's Spiral Model. The cycles of the spiral structure represent different types of attack that need to be considered network-based attacks, application-based attacks, and data-content attacks. We illustrate our survivable architecture refinement process through its application to e-commerce. E-commerce examples are representative of the lack of full control and visibility that characterize unbounded systems.

SHARE
Download PDF
Cite This Technical Note

Ellison, R., & Moore, A. (2001, October 1). Architectural Refinement for the Design of Survivable Systems. (Technical Note CMU/SEI-2001-TN-008). Retrieved April 25, 2024, from https://doi.org/10.1184/R1/6572012.v1.

@techreport{ellison_2001,
author={Ellison, Robert and Moore, Andrew},
title={Architectural Refinement for the Design of Survivable Systems},
month={Oct},
year={2001},
number={CMU/SEI-2001-TN-008},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://doi.org/10.1184/R1/6572012.v1},
note={Accessed: 2024-Apr-25}
}

Ellison, Robert, and Andrew Moore. "Architectural Refinement for the Design of Survivable Systems." (CMU/SEI-2001-TN-008). Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, October 1, 2001. https://doi.org/10.1184/R1/6572012.v1.

R. Ellison, and A. Moore, "Architectural Refinement for the Design of Survivable Systems," Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, Technical Note CMU/SEI-2001-TN-008, 1-Oct-2001 [Online]. Available: https://doi.org/10.1184/R1/6572012.v1. [Accessed: 25-Apr-2024].

Ellison, Robert, and Andrew Moore. "Architectural Refinement for the Design of Survivable Systems." (Technical Note CMU/SEI-2001-TN-008). Carnegie Mellon University, Software Engineering Institute's Digital Library, Software Engineering Institute, 1 Oct. 2001. https://doi.org/10.1184/R1/6572012.v1. Accessed 25 Apr. 2024.

Ellison, Robert; & Moore, Andrew. Architectural Refinement for the Design of Survivable Systems. CMU/SEI-2001-TN-008. Software Engineering Institute. 2001. https://doi.org/10.1184/R1/6572012.v1

Ask a question about this Technical Note