 |
|  |
Assessing Survivability of Critical SystemsCan Your Systems Survive?It's a fundamental question. Your customers depend on you. Your business mission is to support them. But your business mission depends on your network information systems. Can your critical systems survive attacks and failures? If you don't know, your customers and your business mission are at risk.
What Does Survivability Mean?No amount of security can guarantee that systems will not be penetrated and compromised. No amount of testing can guarantee that systems will not experience failures. Survivability means your systems can continue to provide essential services in the presence of attacks and failures, and recover full services in a timely manner.
How Can Survivability be Assessed?The SEI CERT® Coordination Center has developed the Survivable Systems Analysis (SSA) method to help assess the survivability of proposed or existing systems. The SSA assessment is carried out by a team of SEI personnel working with your team of system architects and stakeholders. The SSA method determines the essential functions of your system that must survive, selects attack scenarios based on the system environment and risks, identifies potential softspots in the system architecture, and defines architecture improvement strategies in a Survivability Map for management decision making.
Why Do a Survivable Systems Analysis?The SSA method provides answers to key questions about your systems:
For More InformationYour business mission depends on critical network systems. It is prudent risk management to analyze and improve their survivability. For information on how the CERT/CC can provide an SSA for your organization, contactDr. Nancy Mead at 412 / 268-5756, Email: nrm@sei.cmu.edu
CERT Coordination Center Return to top of the page
Copyright 2001 by Carnegie Mellon University Disclaimers and copyright information Last updated November 12, 2002 |
