Abstract
Design for safety-critical software intended for domains like transportation or medical systems is known to be difficult but is required to give a sufficient level of assurance that the system will not harm or kill people. To add to the difficulty, systems have now become highly connected and are turning into cyber-physical systems. This results in the need to address intentional cyber security threats on top of risks related to unintentional software defects. Different approaches are being defined to co-engineer both software security and safety in a consistent way. This paper aims at providing a deeper understanding of those approaches and the evolution of related standards by analysing them using a sound goal-oriented framework that can model both kind of properties and also reason on them in a risk-oriented way. In the process interesting co-design patterns are also identified and discussed. The approach is driven by a real world open specification from the railways.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Avizienis, A.: Basic concepts and taxonomy of dependable and secure computing. IEEE Trans. Dependable Secure Comput. 1(1), 11–33 (2004)
Biro, M., Mashkoor, A., Sametinger, J., Seker, R.: Software safety and security risk mitigation in cyber-physical systems. IEEE Softw. 35(1), 24–29 (2018)
Blanquart, J.P., et al.: Criticality categories across safety standards in different domains. In: ERTS-2012, Toulouse (2012)
CENELEC: EN 50128 - Railway applications - Communications, signalling and processing systems - Software for railway control and protection systems (2011)
Chen, B., et al.: Security analysis of urban railway systems: the need for a cyber-physical perspective. In: Koornneef, F., van Gulijk, C. (eds.) SAFECOMP 2015. LNCS, vol. 9338, pp. 277–290. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-24249-1_24
Chen, Y.R., et al.: Unified security and safety risk assessment - a case study on nuclear power plant. In: 2014 International Conference on Trustworthy Systems and Their Applications, June 2014
Greenberg, A.: Hackers remotely kill a jeep on the highway-with me in it (2015). https://www.wired.com/2015/07/hackers-remotely-kill-jeep-highway
Hazell, P.M.: Integrating iec 62443 cyber security with existing industrial process and functional safety management systems (2017). http://bit.do/cyber-combined
Hessami, A.: A systems view of railway safety and security. In: Zboinski, K. (ed.) Railway Research, chap. 2. InTech, Rijeka (2015)
Howe, N.: Cybersecurity in railway signalling systems. Institution of Railways Signal Engineers News (2017)
Hulsebosch, B., van Velzen, A.: Inventory and Classification of Cybersecurity Standards. Ministry of Security and Justice of the Kingdom of the Netherlands (2015)
IEC: Iec 61508 - functional safety of electrical/electronic/programmable electronic safety-related systems (2010). http://www.iec.ch/functionalsafety
IEC: Iec 62443-4-1 security for industrial automation and control systems - part 4–1: Secure product development lifecycle requirements (2018)
ISO: Iso 31000:2018, risk management - guidelines, provides principles, framework (2018). https://www.iso.org/iso-31000-risk-management.html
Kanamaru, H.: Bridging functional safety and cyber security of SIS/SCS. In: 56th Annual Conference of the Society of Instrument and Control Engineers of Japan (2017)
van Lamsweerde, A.: Requirements Engineering - From System Goals to UML Models to Software Specifications. Wiley, Hoboken (2009)
van Lamsweerde, A., Letier, E.: Handling obstacles in goal-oriented requirements engineering. IEEE Trans. Softw. Eng. 26(10), 978–1005 (2000)
Lamsweerde, A.V., Brohez, S., Landtsheer, R.D., Janssens, D.: From system goals to intruder anti-goals: attack generation and resolution for security requirements engineering. In: In Proceedings of RHAS 2003, pp. 49–56 (2003)
Macher, G., Höller, A., Sporer, H., Armengaud, E., Kreiner, C.: A combined safety-hazards and security-threat analysis method for automotive systems. In: Koornneef, F., van Gulijk, C. (eds.) SAFECOMP 2015. LNCS, vol. 9338, pp. 237–250. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-24249-1_21
MERGE Project: Recommandations for Security and Safety Co-engineering. Delivrable (2016)
Park, J., Suh, Y., Park, C.: Implementation of cyber security for safety systems of nuclear facilities. Prog. Nuclear Energy 88, 88–94 (2016). http://www.sciencedirect.com/science/article/pii/S014919701530127X
Paul, S., Rioux, L.: Over 20 years of research in cybersecurity and safety engineering: a short bibliography. In: Conference: 6th International Conference on Safety and Security Engineering (SAFE), May 2015
Ponsard, C., Dallons, G., Massonet, P.: Goal-oriented co-engineering of security and safety requirements in cyber-physical systems. In: Skavhaug, A., Guiochet, J., Schoitsch, E., Bitsch, F. (eds.) SAFECOMP 2016. LNCS, vol. 9923, pp. 334–345. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-45480-1_27
Rajkumar, R., Lee, I., Sha, L., Stankovic, J.: Cyber-physical systems: the next computing revolution. In: 2010 47th ACM/IEEE Design Automation Conference (DAC), pp. 731–736, June 2010
Respect-IT: Objectiver. http://www.objectiver.com
Schmittner, C., Ma, Z.: Towards a framework for alignment between automotive safety and security standards. In: Koornneef, F., van Gulijk, C. (eds.) SAFECOMP 2015. LNCS, vol. 9338, pp. 133–143. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-24249-1_12
Schoitsch, E., Schmittner, C., Ma, Z., Gruber, T.: The need for safety and cyber-security co-engineering and standardization for highly automated automotive vehicles. In: Schulze, T., Müller, B., Meyer, G. (eds.) Advanced Microsystems for Automotive Applications 2015. LNM, pp. 251–261. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-20855-8_20
Scott, G., et al.: ATO Over ETCS Operational Requirements - Version 1.7. ERTMS User Group (2016)
Steiner, M., Liggesmeyer, P.: Combination of safety and security analysis - finding security problems that threaten the safety of a system. In: Dependable Embedded and Cyber-physical Systems (SAFECOMP Workshop), France (2013)
Wolf, M., Serpanos, D.: Safety and security of cyber-physical and internet of things systems [point of view]. Proc. IEEE 105(6), 983–984 (2017)
Acknowledgements
This work was partly funded by the DIGITRANS project of the Walloon Region (grant nr. 7618). We also thanks the reviewer for their detailed comments.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2018 Springer Nature Switzerland AG
About this paper
Cite this paper
Ponsard, C., Grandclaudon, J., Massonet, P., Touzani, M. (2018). Assessment of Emerging Standards for Safety and Security Co-Design on a Railway Case Study. In: Abdelwahed, E., et al. New Trends in Model and Data Engineering. MEDI 2018. Communications in Computer and Information Science, vol 929. Springer, Cham. https://doi.org/10.1007/978-3-030-02852-7_12
Download citation
DOI: https://doi.org/10.1007/978-3-030-02852-7_12
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-02851-0
Online ISBN: 978-3-030-02852-7
eBook Packages: Computer ScienceComputer Science (R0)