There is an Open Access version for this licensed article that can be read free of charge and without license restrictions. The content of the Open Access version may differ from that of the licensed version.
Pricing information
Please choose your delivery country and your customer group
This document establishes a research roadmap for System Security Engineering. Systems Security Engineering (SSE) is defined as an element of system engineering that applies scientific and engineering principles to identify security vulnerabilities and minimize or contain risks associated with these vulnerabilities This roadmap methodically extracts the value of current approaches to systems security and integrates it with a systems thinking perspective, though it does not make any assumptions about the utility of historical methodology. This path is expected to result in systems designs that shield against commonly known attacks, provide cognizance of changes in the threat environment, and are resilient in the face of unexpected attacks. This outcome requires that we are able to efficiently apply security standards, improve intelligence gathering capabilities relevant to a system s mission, and consider mission assurance a core system capability going forward. In order to do this, a systems engineer will need a clear definition of security, and a way to compare security metrics to other capabilities in the system trade space. This report also describes how the SERC Security Engineering team used this approach to build a SSE roadmap as well as how the academic approach adopted informs the research recommended in the report.