TUM Logo

Modeling System Architectures for Assessing Security Control Effectiveness

Modeling System Architectures for Assessing Security Control Effectiveness In the process of defining system architectures, initial design decisions can fundamentally affect the security of the overall system. It is, therefore, essential to properly consider security aspects in that phase of a system development since security issues caused by the architectural design can typically only be solved with high cost later on. To properly prevent such issues, an efficient way for assessing the impact of architectural decisions shall be established. This can be a major benefit for decision making during in the manufacturing process. The impact assessment should be conducted based on an abstract description of the intended architecture in a suitable description language. The described system model and its evaluation shall allow system architects to draw conclusions about security implications of changes or the effectiveness of intended security controls in the early design phase. Task Description • Identify assessment-relevant security properties of the overall system architecture (with regards to software stack, network, attack vectors, and security controls) • Research existing system description languages and models • Define a description language that can be used to describe the system architecture with a focus on the previously identified properties (possibly based on existing standards found in the research phase) • Define how to assess the security of a proposed architecture based on the defined system model • Implement necessary tooling for – parsing the system description – assessing the security of the defined model and comparing different architectures with each other – generating of a graphical representation of the security assessment output • Test and evaluate the defined language and tooling for exemplary system architectures Prerequisites • Basic knowledge about system architectures and networks • Knowledge about IT security • High motivation and ability to work independently • Basic programming knowledge (e.g., Python, Rust, Go) • Preferrably previous experience in UI design Contact Florian Jakobsmeier, Monika Huber, Corinna Lingstädt Fraunhofer Institute for Applied and Integrated Security AISEC Lichtenbergstr. 11, 85748 Garching E-Mail: {florian.jakobsmeier;monika.huber;corinna.lingstaedt}@aisec.fraunhofer.de Tel.: +49-89-3229986-{165;148;1022}

Modeling System Architectures for Assessing Security Control Effectiveness

Supervisor(s): Florian Jakobsmeier, Monika Huber, Corinna Lingst ̈adt
Status: open
Topic: Others
Type of Thesis: Masterthesis
Proof of Concept No
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching

Astract:

Modeling System Architectures for Assessing Security Control Effectiveness In the process of defining system architectures, initial design decisions can fundamentally affect the security of the overall system. It is, therefore, essential to properly consider security aspects in that phase of a system development since security issues caused by the architectural design can typically only be solved with high cost later on. To properly prevent such issues, an efficient way for assessing the impact of architectural decisions shall be established. This can be a major benefit for decision making during in the manufacturing process. The impact assessment should be conducted based on an abstract description of the intended architecture in a suitable description language. The described system model and its evaluation shall allow system architects to draw conclusions about security implications of changes or the effectiveness of intended security controls in the early design phase. Task Description • Identify assessment-relevant security properties of the overall system architecture (with regards to software stack, network, attack vectors, and security controls) • Research existing system description languages and models • Define a description language that can be used to describe the system architecture with a focus on the previously identified properties (possibly based on existing standards found in the research phase) • Define how to assess the security of a proposed architecture based on the defined system model • Implement necessary tooling for – parsing the system description – assessing the security of the defined model and comparing different architectures with each other – generating of a graphical representation of the security assessment output • Test and evaluate the defined language and tooling for exemplary system architectures Prerequisites • Basic knowledge about system architectures and networks • Knowledge about IT security • High motivation and ability to work independently • Basic programming knowledge (e.g., Python, Rust, Go) • Preferrably previous experience in UI design Contact Florian Jakobsmeier, Monika Huber, Corinna Lingstädt Fraunhofer Institute for Applied and Integrated Security AISEC Lichtenbergstr. 11, 85748 Garching E-Mail: {florian.jakobsmeier;monika.huber;corinna.lingstaedt}@aisec.fraunhofer.de Tel.: +49-89-3229986-{165;148;1022}