Stop the Flow: Damage Mitigation Framework for Trusted Systems
A Trusted System is one that dependably performs its mission while minimizing or eliminating the probability of significant, unintended damage. The ability to develop, deploy and maintain trusted systems, those that are safe, secure, dependable, and survivable is an unsolved problem. A high-level, abstract framework of Damage Mitigation has been created to enable the architecture and design of trusted systems, those that dependably perform a mission while minimizing or eliminating the probability of significant, unintended damage. This framework is based upon the premise of system imperfection, consisting of a Trusted Systems Model and a Damage Process Model. Damage will be defined as any significant negative consequence of a system's operation. The intent is that this systems approach to Damage Mitigation will facilitate new ideas on how to improve the fundamental properties of trustability of systems and encourage the creation of trustable architectures and designs for critical systems. The central idea is that there exists a causal event chain that can lead to damage and a loss in system value. At each point within the chain, there are potential "chokepoints" where it may be possible to "Stop the Flow" from an instigating event to a damage event.
This project involves furthering this work through the creation of case studies through the identification and analysis of existing systems, using this framework, as a means to determine their trustworthiness and to determine potential areas of improvement. Another potential area of research is in the classification of existing trusted system techniques using this framework. A final area of potential research would be to create new mitigation techniques based on this framework.
- Laird, L., Wade, J. (2011). "Stop The Flow: A Damage Mitigation Framework for Trusted Systems", CrossTalk, MarchiApril2011, pg. 12-16. http://www.crosstalkonline.org/storagelflipbooks/20 11120 11 03/index.html
- Systems Engineers with experience and/or interest in dependable systems and damage mitigation techniques.