Trust Loss Effects Analysis Method for Zero Trust Assessment

Douglas L. Van Bossuyt, Nikolaos Papakonstantinou, Britta Hale, Ryan Arlitt

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

Abstract

Resilience, a system property merging the consideration of stochastic and malicious events focusing on mission success, motivates researchers and practitioners to develop methodologies to support holistic assessments. While established risk assessment methods exist for early and advanced analysis of complex systems, the dynamic nature of security is much more challenging for resilience analysis.The scientific contribution of this paper is a methodology called Trust Loss Effects Analysis (TLEA) for the systematic assessment of the risks to the mission emerging from compromised trust of humans who are part of or are interacting with the system. To make this work more understandable and applicable, the TLEA method follows the steps of Failure Mode, Effects & Criticality Analysis (FMECA) with a difference in the steps related to the identification of security events. There, the TLEA method uses steps from the Spoofing, Tampering, Repudiation, Information disclosure, Denial of Service (DoS), Elevation of privilege (STRIDE) methodology.The TLEA is introduced using a generic example and is then demonstrated using a more realistic use case of a drone-based system on a reconnaissance mission. After the application of the TLEA method, it is possible to identify different risks related to the loss of trust and evaluate their impact on mission success.

Original languageEnglish
Title of host publication2023 Annual Reliability and Maintainability Symposium, RAMS 2023
PublisherWiley-IEEE Press
Pages1-6
Number of pages6
ISBN (Electronic)978-1-6654-6053-8
ISBN (Print)978-1-6654-6054-5
DOIs
Publication statusPublished - 26 Jan 2023
MoE publication typeA4 Article in a conference publication
Event2023 Annual Reliability and Maintainability Symposium (RAMS) - Orlando, FL, USA
Duration: 23 Jan 202326 Jan 2023

Conference

Conference2023 Annual Reliability and Maintainability Symposium (RAMS)
Period23/01/2326/01/23

Keywords

  • Systematics
  • Merging
  • Random access memory
  • Focusing
  • Reconnaissance
  • Zero Trust
  • Risk management
  • FMECA
  • FMEA
  • Security
  • Resilience
  • STRIDE
  • Safety

Fingerprint

Dive into the research topics of 'Trust Loss Effects Analysis Method for Zero Trust Assessment'. Together they form a unique fingerprint.

Cite this