A structured risk analysis approach to resolve the data protection and integrity issues for computer-aided acquisition logistics support (CALS)

Abstract

A structured risk analysis approach that is intended to result in cost-effective data protection and integrity service throughout CALS is described. The structured risk analysis approach would: identify CALS assets; determine threats to CALS data; ascertain CALS vulnerabilities; identify potential risks; use the risk and vulnerability assessment as a baseline for protection and integrity identifying the required services; define a generic lattice-ordered set of security labels for unclassified data that will encompass the CALS requirements; develop the specific protocols to implement the architecture; and implement the protocol in a test bed and then conduct security and operational testing.<>