An assessment model and methodology for national security systems

Abstract

All computer systems or systems of computers are composed of some combination of three basic components; hardware, firmware, and software. These systems are assessed to determine the assessor’s and the risk acceptor’s confidence in their level of robustness, where robustness is the characterization of strength of a security function, mechanism, service, or solution, and the assurance that it is implemented and that it is functioning correctly. Most experienced assessors are aware that the level of robustness required for each system is dependent upon dynamic factors such as operational environment, threat source interest, and mission criticality. This paper will provide mathematical models of these factors and an assessment methodology that builds upon those models.