Industrial Internet Security Framework v 1.0

Security Framework 3.7 3: Key System Characteristics Enabling Trustworthiness TRUSTWORTHY SYSTEMS A main stakeholder goal for a system is that it be trustworthy in respect to the key system characteristics. The importance of each key system characteristic to a given deployment is unique to each system and achieving one can conflict with achieving another. Interactions between the key system characteristics must be understood based on drivers such as regulatory compliance, business process and industry norms, not in isolation. Figure 3-1: Trustworthiness of an IIoT System Trustworthiness 1 is the degree of confidence one has that the system performs as expected in respect to all the key system characteristics in the face of environmental disruptions, human errors, system faults and attacks. The needs of IT and OT must both be met. 1 Originally defined in [Schneider1998], again defined also in [NIST-CPS] IIC:PUB:G4:V1.0:PB:20160926 - 20 -

Industrial Internet Security Framework v 1.0 | Page 20