SABSA Model
The SABSA Model comprises six layers, the summary of which is in the table below. It follows closely the work done by John A. Zachman in developing a model for enterprise architecture, although it has been adapted somewhat to a security view of the world. Each layer represents the view of a different player in the process of specifying, designing, constructing and using the business system.
|
The Business View
|
Contextual Security Architecture
|
|
The Architect’s View
|
Conceptual Security Architecture
|
|
The Designer’s View
|
Logical Security Architecture
|
|
The Builder’s View
|
Physical Security Architecture
|
|
The Tradesman’s View
|
Component Security Architecture
|
|
The Facilities Manager’s View
|
Operational Security Architecture
|
The SABSA Model for Security Architecture Development
There is another configuration of these six layers which is perhaps more helpful, shown in the next figure. In this diagram the ‘operational security architecture’ has been placed vertically across the other five layers. This is because operational security issues arise at each and every one of the other five layers. Operational security has a meaning in the context of each of these other layers.
The SABSA Model for Security Architecture Development