Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Technical Report

Case Study in Survivable Network System Analysis

  • Abstract

    This paper presents a method for analyzing the survivability of distributed network systems and an example of its application. Survivability is the capability of a system to fulfill its mission, in a timely manner, in the presence of attacks, failures, or accidents. Survivability requires capabilities for intrusion resistance, recognition, and recovery. The Survivable Network Analysis (SNA) method builds on the Information Security Evaluation previously developed by permitting assessment of survivability strategies at the architecture level. Steps in the SNA method include system mission and architecture definition, essential capability definition, compromisable capability definition, and survivability analysis of architectural softspots that are both essential and compromisable. Intrusion scenarios play a key role in the method. SNA results are summarized in a Survivability Map that links recommended survivability strategies for resistance, recognition, and recovery to the system architecture and requirements. This case study summarizes the application and results of applying the SNA method to a subsystem of a large-scale, distributed healthcare system. The study recommended specific modifications to the subsystem architecture to support survivability objectives. Positive client response to study recommendations suggests that the method can provide significant added value for ensuring survivability of system operations. As a result of this case study, the SNA method, artifacts, and lessons learned will be available to apply architectural analysis for survivability to proposed and legacy DoD distributed systems.

  • Download

Cite This Report

SEI

Ellison, Robert; Linger, Richard; Longstaff, Thomas; & Mead, Nancy. Case Study in Survivable Network System Analysis. CMU/SEI-98-TR-014. Software Engineering Institute, Carnegie Mellon University. 1998. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13137

IEEE

Ellison. Robert, Linger. Richard, Longstaff. Thomas, and Mead. Nancy, "Case Study in Survivable Network System Analysis," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Report CMU/SEI-98-TR-014, 1998. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13137

APA

Ellison, Robert., Linger, Richard., Longstaff, Thomas., & Mead, Nancy. (1998). Case Study in Survivable Network System Analysis (CMU/SEI-98-TR-014). Retrieved March 26, 2017, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13137

CHI

Robert Ellison, Richard Linger, Thomas Longstaff, & Nancy Mead. Case Study in Survivable Network System Analysis (CMU/SEI-98-TR-014). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 1998. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13137

MLA

Ellison, Robert., Linger, Richard., Longstaff, Thomas., & Mead, Nancy. 1998. Case Study in Survivable Network System Analysis (Technical Report CMU/SEI-98-TR-014). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13137

BibTex

@techreport{EllisonCaseStudy1998,
title={Case Study in Survivable Network System Analysis},
author={Robert Ellison and Richard Linger and Thomas Longstaff and Nancy Mead},
year={1998},
number={CMU/SEI-98-TR-014},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=13137} }