Home' RTCA Documents for Review : DO-356A Contents 66
© RTCA, 2018
The security risk assessment objectives include:
O1.1 The security scope is established and validated.
O1.6 The Preliminary Aircraft/System Security Risk Assessments and
Aircraft/System Security Risk Assessments are performed and consistent with
related Aircraft/System safety assessments.
O1.2 Preliminary Aircraft/System Security Risk Assessment results have been
processed to define aircraft/system security architecture and identify security
measures to be developed.
O1.7 Aircraft / System Security Risk Assessment is consistent and complete with
respect to Security Scope, Security Guidance, Security Requirements, Security
Verification, Security Refutation and Vulnerability Identification.
O1.9 The Threat Condition Identification and Evaluation is complete and validated.
Security Deployment Objectives
The purpose of security in operation is to guarantee the secure operation and
maintenance of aircraft systems. Security guidance is used to ensure that the aircraft or
system is deployed and operated in accordance with the operational requirements.
The security deployment objectives include:
O11.1 Security Guidance is correct, complete and validated against security risk
Risk assessments outputs to be considered are technical and operational
Continued Security Effectiveness Objectives
Purpose of continuous security effectiveness is to ensure that security measures remain
effective after certification in line with continued airworthiness. It encompasses
monitoring of vulnerabilities, management of security incidents, management of
changes in the environment and in risk assessment, exchange of information.
The continued security effectiveness objectives include:
O12.1 A vulnerability management process is established.
O12.4 Security environment monitoring means, including threat monitoring, are
O12.5 A security incident response process is established.
O12.8 A security risk assessment process for security environment changes is
SECURITY DEVELOPMENT ASSURANCE
Security Development Assurance activities apply to each security measure’s
implementation and are necessary to assure all elements in the attack path perform as
intended. The focus of these assurance activities is to provide confidence in the
elimination of “errors having a potential security issue” that might be introduced during
the development processes.
This section describes the security assurance objectives that are similar to safety
development assurance standard objectives. These safety process standard objectives
need to consider the increased threat environment from IUEI.
Note that each of the subsections in this section provides a complete list of security
development assurance objectives to allow security compliance evaluation without
reliance on the safety process standards. Also, for an applicant that has an existing
safety process, DEVELOPMENT ASSURANCE SUPPLEMENT CONSIDERATIONS
are included to summarize how an existing safety process could be augmented to
meet the objectives. These considerations are also summarized in Appendix B.
The security requirements activities use the output of the security risk assessment to
define security functionality by the characterization of security measures. The Aircraft /
System level security needs are functionally decomposed to the item level in a
Links Archive Navigation Previous Page Next Page