Security and Survivability Reasoning Frameworks and Architectural Design Tactics
September 2004 • Technical Note
Robert J. Ellison, Andrew P. Moore, Len Bass, Mark H. Klein, Felix Bachmann
In this report, the authors describe an approach to disciplined software architecture design for the related quality attributes of security and survivability.
Software Engineering Institute
CMU/SEI Report Number
DOI (Digital Object Identifier):10.1184/R1/6583661.v1
The Software Engineering Institute (SEI) has been investigating disciplined software architecture design for several years. The SEI approach includes a collection of "quality attribute reasoning frameworks" that understand both quality attribute reasoning and how architects design for the quality attribute under particular situations. The approach was first applied to the quality attributes of modifiability and performance. This report is an initial attempt to use the same method for the related quality attributes of security and survivability. The report includes an initial organization of security within the framework, a partial explication of elements of that framework, and three representative examples of existing security reasoning frameworks.