Pålitliga IT-system i Försvarsmakten - en behovsinventering

IT systems are growing, both in numbers and in complexity. In organisations with high demands on IT security, the need for trustworthy IT systems are even more important since trustworthiness is necessary in order to create a secure overall solution. This report presents the result of a needs inventory with the purpose of identifying the needs related to trustworthy IT systems within the Swedish Armed Forces. The inventory was performed in four steps: (1) data collection using seven in-depth interviews, (2) identification of statements, (3) identification of needs and (4) structuring of needs. The result shows a substantial variation, both regarding the concept of trustworthiness and in what contributes to a higher degree of trustworthiness. One of the results is that to achieve trustworthiness it is not enough with trustworthiness in the IT system. There also has to be trustworthiness in the context of IT systems and neighbouring functions. Examples of what contributes to trustworthy IT system are continuity in the IT security work and a clear business architecture.