Systems Security Engineering


Systems Security Engineering is a risk-interdisciplinary area of engineering that is used to develop those systems which will continue to perform in the case of a cyber attack. In order to ensure this proven security engineering principles based on an engineering approach are applied throughout the lifecycle of the system in order to ensure that protection is always guaranteed despite possible threats from aggressors. The lifecycle of a system includes the design phase, development, commissioning and finally decommissioning of the system. It should be noted that the entire lifecycle is analyzed and monitored from the security engineering point of view.

A system consists of several interacting components. In order to protect the entire system the individual components need to be precisely analyzed and potential points of attack be revealed. Based on the method of security engineering, the security properties of the components are protected by identifying and applying suitable protective measures. The most important safety characteristics which have to be protected are confidentiality, integrity and availability. Depending on the system, the results are different protection requirements. A detailed risk analysis is indispensable to determine the exact requirements. Depending on the nature of the weakness and the number of vulnerabilities in the system, various protective measures are prioritized in order to achieve the optimum level of security.