Visible to the public A STPA-Sec Case Study: Eliciting Early Security Requirements for a Small Unmanned Aerial System

TitleA STPA-Sec Case Study: Eliciting Early Security Requirements for a Small Unmanned Aerial System
Publication TypeConference Paper
Year of Publication2020
AuthorsSayers, J. M., Feighery, B. E., Span, M. T.
Conference Name2020 IEEE Systems Security Symposium (SSS)
Date PublishedAug. 2020
ISBN Number978-1-7281-4316-3
Keywordsarchitectural-level security specification criteria, autonomous aerial vehicles, computer security, control engineering computing, control theory, cybersecurity, design-level engineering considerations, early security requirements, expert systems, functional-level security requirements, Hazards, Human Behavior, notional SUAS system case study, pubcrawl, requirements analysis, resilience, Resiliency, resiliency requirements, safety requirements, safety-critical software, Scalability, security, security of data, small unmanned aerial system, Stakeholders, STPA-Sec, STPA-Sec case study, subject matter experts, system architecture, system life cycle, system-theoretic process analysis approach, Systems Engineering, Systems engineering and theory, systems security analysis, systems security engineering, top down system security requirements analysis approach, UAS operators, United States Air Force Academy Systems Engineering cadets

This work describes a top down systems security requirements analysis approach for understanding and eliciting security requirements for a notional small unmanned aerial system (SUAS). More specifically, the System-Theoretic Process Analysis approach for Security (STPA-Sec) is used to understand and elicit systems security requirements. The effort employs STPA-Sec on a notional SUAS system case study to detail the development of functional-level security requirements, design-level engineering considerations, and architectural-level security specification criteria early in the system life cycle when the solution trade-space is largest rather than merely examining components and adding protections during system operation or sustainment. These details were elaborated during a semester independent study research effort by two United States Air Force Academy Systems Engineering cadets, guided by their instructor and a series of working group sessions with UAS operators and subject matter experts. This work provides insight into a viable systems security requirements analysis approach which results in traceable security, safety, and resiliency requirements that can be designed-for, built-to, and verified with confidence.

Citation Keysayers_stpa-sec_2020