Investigating Advances in the Acquisition of Secure Systems Based on Open Architecture, Open Source Software, and Software Product Lines

Report Number: UCI-AM-11-203

Series: Acquisition Management

Category: Open Architecture (OA)

Report Series: Sponsored Report

Authors: Walt Scacchi, Thomas A. Alspaugh

Title: Investigating Advances in the Acquisition of Secure Systems Based on Open Architecture, Open Source Software, and Software Product Lines

Published: 2012-01-01

Sponsored By: Acquisition Research Program

Status: Published--Unlimited Distribution

Research Type: Other Research Faculty

Full Text URL: http://acquisitionresearch.net/files/FY2011/UCI-AM-11-203.pdf

Keywords: open architecture, open source, software, game systems

Abstract:

The role of software acquisition ecosystems in the development and evolution of secure open architecture systems has received insufficient consideration. Such systems are composed of software components subject to different security requirements in an architecture in which evolution can occur by evolving existing components or by replacing them. However, this may result in possible security requirements conflicts and organizational liability for failure to ful?ll security obligations. We have developed an approach for understanding and modeling software security requirements as