E-Book Overview
This first-of-its-kind resource offers a broad and detailed understanding of software systems engineering from both security and safety perspectives. Addressing the overarching issues related to safeguarding public data and intellectual property, the book defines such terms as systems engineering, software engineering, security, and safety as precisely as possible, making clear the many distinctions, commonalities, and interdependencies among various disciplines. You explore the various approaches to risk and the generation and analysis of appropriate metrics.
This unique book explains how processes relevant to the creation and operation of software systems should be determined and improved, how projects should be managed, and how products can be assured. You learn the importance of integrating safety and security into the development life cycle. Additionally, this practical volume helps identify what motivators and deterrents can be put in place in order to implement the methods that have been recommended.
E-Book Content
Engineering Safe and Secure Software Systems
For a complete listing of titles in the Artech House Computer Security Series, turn to the back of this book.
Engineering Safe and Secure Software Systems C. Warren Axelrod
Library of Congress Cataloging-in-Publication Data A catalog record for this book is available from the U.S. Library of Congress. British Library Cataloguing in Publication Data A catalogue record for this book is available from the British Library. Cover design by Vicki Kane
ISBN 13: 978-1-60807-472-3
© 2013 ARTECH HOUSE 685 Canton Street Norwood, MA 02062
All rights reserved. Printed and bound in the United States of America. No part of this book may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage and retrieval system, without permission in writing from the publisher. All terms mentioned in this book that are known to be trademarks or service marks have been appropriately capitalized. Artech House cannot attest to the accuracy of this information. Use of a term in this book should not be regarded as affecting the validity of any trademark or service mark.
10 9 8 7 6 5 4 3 2 1
To Judy, David, Nicole, Elisabeth, Evan, and Jolie, with wishes for a safer and more secure world for future generations
Contents
Preface
xvii
Foreword
xxi
1
Introduction
1
Preamble
1
Scope and Structure of the Book
3
Acknowledgments
4
Endnotes
5
2
Engineering Systems
7
Introduction
8
Some Initial Observations
8
Deficient Definitions
11
Rationale
12
What are Systems?
13
Deconstructing Systems Engineering
16
What Is Systems Engineering?
19
vii
viii
Engineering Safe and Secure Software Systems
Systems Engineering and the Systems Engineering Management Process
20
The DoD Text
22
Another Observation
22
More on Systems Engineering
23
The Systems Engineering Process (SEP)
23
Summary and Conclusions
26
Endnotes
26
3
Engineering Software Systems
29
Introduction
29
The Great Debate
31
Some Observations <