AMS Lifecycle Phase: Solution Implementation

Description

The security architecture and design have a significant impact on the system's vulnerabilities and testing. A good design includes the testability as criteria. Having the proper security architecture provides a framework for cost-effective development of the security services by reducing the security impact of developing systems and services with unknown security properties. Security architecture and design should include techniques (encapsulation and isolation) and mechanisms (DMZs, and firewalls) to mitigate the vulnerabilities and risks and the cost of ST&E.

Security architectures that integrate countermeasures or controls should be considered. These countermeasures or controls include point solutions for individual networks (firewalls and intrusion detection systems [IDS]), security information management (SIM) systems, and SIM integration with a secure network management (SNM) system.

Tasks

• Configure the operating system and applications with proper allocated security controls or policies
• Provide physical and personnel security to support the access controls to the systems
• Develop Management, Operational and/or Technical controls to mitigate the listed security risks

Resources

• FAA Order 1370.82A, Information Systems Security Program
• FAAs Systems Engineering Manual (SEM)
• ATO — Information Systems security Architecture (ISSA). Latest version