DocumentCode
2603121
Title
Enhancing C4I Security Using Threat Modeling
Author
Alghamdi, Abdullah Sharaf ; Hussain, Tazar ; Khan, Gul Faraz
Author_Institution
Dept. of Software Eng., King Saud Univ., Riyadh, Saudi Arabia
fYear
2010
fDate
24-26 March 2010
Firstpage
131
Lastpage
136
Abstract
C4I (command, control, communications, computer and intelligence) system is a complex system of systems that enables the military commander to achieve decision superiority by affecting adversary´s information and information based processes while protecting one`s own information systems. Owing to the sensitivity of military information the security threats to C4I systems are real and growing therefore security is a major challenge in order to maintain integrity, confidentiality, availability and accountability. Different Models and architectures frameworks e.g. DODAF, CDSA have been proposed which decompose the detail structure of C4I systems however these models and frameworks do not provide mechanism to capture associated security risks and issues. Threat modeling is the process to understand different ways system can be attacked which helps towards secure system design and implement countermeasures. This paper suggests that using threat modeling could help to eradicate or reduce the effect of advancing threats to C4I systems. In this paper we also identify how security can be modeled in top down manner e.g. from architecture level to lower level of modeling so that countermeasures can be incorporated on system level rather than on bit by bit basis.
Keywords
military computing; security of data; C4I security; information systems; military commander; military information sensitivity; secure system design; threat modeling; Communication system security; Computational modeling; Computer networks; Computer security; Computer simulation; Information security; Information systems; Information technology; Military computing; Protection; C4I system; NetCentric; security; threat modeling; vulnerabilities;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer Modelling and Simulation (UKSim), 2010 12th International Conference on
Conference_Location
Cambridge
Print_ISBN
978-1-4244-6614-6
Type
conf
DOI
10.1109/UKSIM.2010.31
Filename
5481071
Link To Document