Abstract
A system security engineering (SSE) methodology is used within the Secure Systems
Engineering Department of AT&T Laboratories during the analysis, design, and
integration of computer and network systems. This evolving methodology focuses on
how threats, vulnerablilities, and attacks on these systems are identified and
mitigated, and how safeguards based on engineering estimates of risk are identified
and integrated.