Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

NIST SP 800-160 > Chapter 3 > Flashcards

Chapter 3 Flashcards

1
Q

Systems Security Engineering Framework

A

A structured approach that ensures security objectives are met throughout a system’s lifecycle, providing trustworthy, secure systems.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Conceptual View

A

It defines the contexts for systems security engineering activities, focusing on stakeholder security objectives.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Holistic Perspective

A

Promotes an integrated and holistic security perspective across all system lifecycle stages.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Three Contexts

A

The framework outlines three critical contexts: problem context, solution context, and trustworthiness context.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Problem-Driven Approach

A

Ensures that the engineering process is driven by a complete understanding of the problem to provide a solution with adequate security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Iterative Approach

A

The framework is implemented in a closed-loop iterative manner, allowing continuous refinement of problem statements, solutions, and trustworthiness objectives.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Systems Security Analyses

A

The foundation of the framework, providing data, technical interpretations, and supporting decision-making.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Customisation of Security Analyses

A

System security analyses are tailored to align with the scope and objectives of the framework contexts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Assurance Case for Trustworthiness

A

An assurance case is structured set of arguments and evidence that proves a system satisfies specific claims, essential for demonstrating trustworthiness.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Maintaining Assurance Cases

A

Assurance cases are essential to demonstrate complex properties like security and need to be maintained as the engineering effort evolves.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Problem Context

A

The problem context in the Systems Security Engineering Framework focuses on defining stakeholder needs, concerns, security objectives, and constraints to create a secure system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Solution Context

A

The solution context defines the security aspects and constraints for the system’s architecture and design, aiming to meet the requirements and objectives set in the problem context.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Trustworthiness Context

A

The trustworthiness context is where the trustworthiness of a system is determined based on claims derived from security objectives. It involves developing an assurance case and demonstrating that the assurance case is satisfied to show the system’s trustworthiness.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

NIST SP 800-160 (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions