System-Aware Cyber Security

In this paper we outline the need for a new systems engineering architecturally focused approach for addressing the growing threats of debilitating cyber attacks: System-Aware Security. This novel security architecture resides at the application layer and is based on smart reusable system security services. We layout an initial vision for this architectural formulation and show how it can potentially enhance the security of systems by complementing the traditional perimeter security model. In addition, we outline an ongoing research activity involving the development of an initial application for a specific System-Aware Security architecture embedded in a command and control system. The architecture includes three interactive situational adapting smart reusable security services: data continuity checking, configuration hopping, and honeypots. Finally, we describe how these services could be converted into reusable design patterns to stimulate reuse in additional systems.