-
Key: SPECTRA-60
-
Status: open
-
Source: KDM Analytics ( Dr. Nikolai Mansourov)
-
Summary:
Review 16-05-2025
“SPECTRA’s objective is to provide a standard compliance reference for acquisition contracts soliciting models for various assessments, as well as tools and services for performing such assessments automatically” –
o I would much rather SPECTRA be used to define the required elements for cybersecurity analysis within a model and the use cases mentioned here be secondary.
o By focusing SPECTRA almost exclusively on what can be taken out of a model for analysis I believe you are only scratching the surface of what capabilities could be brought to bear for a model and what a framework like SPECTRA could do.
o I also believe that because SPECTRA is solely interested in extracting data from a model it may promote poor model-based system security engineering practices. -
Reported: SPECTRA 1.0a1 — Mon, 21 Jul 2025 15:02 GMT
-
Updated: Mon, 21 Jul 2025 15:02 GMT