Applying The DoD Goal Security Architecture as a Methodology for the Development of System and Enterprise Security Architectures

D. Mosier & T. Lowman

Many organizations have a need to conduct security assessments and develop security architectures. It was recognized that a structured approach is needed. The Department of Defense Goal Security Architecture (DGSA) was already developed through considerable effort by knowledgeable security professionals. We believed that the DGSA could be tailored to fit many enterprise information system security profiles and meet the requirements of multiple organizations. This paper shows how the DGSA was applied across multiple program types, and can be used for a wide variety of security tasks.