[SystemSafety] Systems Security Engineering: NIST wants your comments

Les Chambers les at chambers.com.au
Thu May 19 02:05:58 CEST 2016


Thanks Martyn

How good is this! A standards organisation practicing inclusiveness (a property of INTEGRITY).

I'm sure it will benefit from a close read by 61508 zealots. 

For example: 

The glossary definition of "risk" (risk [ISO 73] Effect of uncertainty on objectives.) could be expanded to cover concepts of measurement with probability and severity.

Les

 

From: systemsafety [mailto:systemsafety-bounces at lists.techfak.uni-bielefeld.de] On Behalf Of Martyn Thomas
Sent: Wednesday, May 18, 2016 7:47 PM
To: systemsafety at techfak.uni-bielefeld.de
Subject: [SystemSafety] Systems Security Engineering: NIST wants your comments

 

http://csrc.nist.gov/publications/drafts/800-160/sp800_160_second-draft.pdf


"We are immersed in a cyber-physical world. Information technology is deeply embedded in traditionally non-IT systems, including automobiles, the electric grid and emergency response. But in many of these systems, security is largely incorporated as a last step, like a suit of armor over a vulnerable body. To help bake security into the very core, a new draft NIST publication recommends ways to incorporate time-tested security design principles and concepts into these systems at every step, from concept to implementation.

Systems Security Engineering: Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems—NIST Special Publication 800-160—is based on the international ISO/IEC/IEEE Standard 15288 for Systems and Software Engineering.

... ...

Public comments on the current draft of Systems Security Engineering: Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems, NIST SP 800-160, are requested. Please send comments to sec-cert at nist.gov no later than July 1, 2016.

http://www.nist.gov/itl/csd/building-security-into-cyber-physical-systems-nist-researchers-suggest-approach-for-trustworthy-modern-infrastructure.cfm

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.techfak.uni-bielefeld.de/mailman/private/systemsafety/attachments/20160519/f761c9b1/attachment.html>


More information about the systemsafety mailing list