How can we justify trust in software based systems?
The paper introduces the notion of trust case and explains its meaning within the context of IT systems. It reports on the experiences gained during development of a trust case for a complex IT system for drugs distribution and application. Several open research problems related to development, management and use of trust cases are identified and enumerated.
Key wordstrust modeling safety security composability medical applications
Unable to display preview. Download preview PDF.
- European Workshop on Industrial Computer Systems, Technical Committee 7 http://www.ewics.org/Google Scholar
- IEC61508:1998 and 2000, part 1 to 7: Functional Safety of Electrical, Electronic and Programmable Electronic SystemsGoogle Scholar
- EU EUREKA SHIP (Safety of Hazardous Industrial Processes) Project http://www.csr.city.ac.uk/csr_city/projects/ship/ship.htmlGoogle Scholar
- Górski J., ‘Developing Safety Cases for Software Intensive Systems’, Proc. Conf. on Risk Analysis and Safety Management of Technical Systems, Gdansk, 25–27 June, 2001, pp. 111–120Google Scholar
- EWICS TC7 (European Workshop on Industrial Computer Systems, Technical Committee 7) Medical Devices Subgroup, Edinbourgh, UK, 23 September, 2003Google Scholar
- Safety Case Assessment Criteria http://www.hse.gov.uk/railway/criteria/Google Scholar
- Common Methodology for Information Technology Security Evaluation, version 1.0, 1999Google Scholar
- Common Criteria for Information Technology Security Evaluation version 2.1, 1999 (Parts 1,2,3)Google Scholar
- ISO/ IEC Information Security Management, 2000Google Scholar
- Trust Case Development, WP11 Report, Project IST DRIVE (Drugs In Virtual Enterprise), Dl1.1–3, January 2003Google Scholar
- Eriksson, H.-E., Penker, M.: Business Modeling with UML, J. Wiley, 2000Google Scholar
- Górski J., Jarzębowicz A., Leszczyna R, Miler J., Olszewski M., ‘An approach to trust case development’, LNCS 2788, Springer-Verlag, 2003, pp. 193–206Google Scholar
- R. Bloomfield, J. Gorski, B. Bibb, ‘Cases Discussion’, EWICS Medical Workshop, Edinbourgh, UK, September 2003Google Scholar