Abstract
Future automotive systems will exhibit increased levels of automation as well as ever tighter integration with other vehicles, traffic infrastructure, and cloud services. From safety perspective, this can be perceived as boon or bane - it greatly increases complexity and uncertainty, but at the same time opens up new opportunities for realizing innovative safety functions. Moreover, cybersecurity becomes important as additional concern because attacks are now much more likely and severe. Unfortunately, there is lack of experience with security concerns in context of safety engineering in general and in automotive safety departments in particular. To remediate this problem, we propose a systematic pattern-based approach that interlinks safety and security patterns and provides guidance with respect to selection and combination of both types of patterns in context of system engineering. The application of a combined safety and security pattern engineering workflow is shown and demonstrated by an automotive use case scenario.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
International Organization for Standardization: ISO 26262 - Road vehicles– Functional safety, Part 1–10. ISO/TC 22/SC 32 - Electrical and electronic components and general system aspects (2011)
Preschern, C., Kajtazovic, N., Kreiner, C.: Building a safety architecture pattern system. In: Proceedings of the 18th European Conference on Pattern Languages of Program, p. 17. ACM (2015)
Armoush, A.: Design patterns for safety-critical embedded systems, Doctoral dissertation, RWTH Aachen University (2010)
Schmittner, C., Ma, Z., Schoitsch, E., Gruber, T.: A case study of FMVEA and CHASSIS as safety and security co-analysis method for automotive cyber-physical systems. In: Proceedings of the 1st ACM Workshop on Cyber-Physical System Security. ACM (2015)
Schumacher, M.: Security Engineering with Patterns: Origins, Theoretical Models, and New Applications, vol. 2754. Springer, Heidelberg (2003)
Delessy, N.A., Fernandez, E.B.: A pattern-driven security process for SOA applications. In: Third International Conference on Availability, Reliability and Security, ARES 2008, pp. 416–421. IEEE, March 2008
Petroulakis, N.E., Spanoudakis, G., Askoxylakis, I.G., Miaoudakis, A., Traganitis, A.: A pattern-based approach for designing reliable cyber-physical systems. In: Global Communications Conference (GLOBECOM), pp. 1–6. IEEE, December 2015
Shostack, A.: Threat Modeling: Designing for Security. Wiley, Hoboken (2014)
Alexander, C., Ishikawa, S., Silverstein, M., Ramió, J.R., Jacobson, M., Fiksdahl-King, I.: A Pattern Language, pp. 311–314. Gustavo Gili, Barcelona (1977)
SAE International: J3061 - Cybersecurity Guidebook for Cyber-Physical Vehicle Systems (2016)
Vlissides, J., Helm, R., Johnson, R., Gamma, E.: Design Patterns: Elements of Reusable Object-Oriented Software. Addison-Wesley, Reading (1995). 49(120), 11
Douglas, B.: Real-Time Design Patterns: Robust Scalable Architecture for Real-Time Systems. Pearson, Essex (2002)
Douglas, B.: Design Patterns for Embedded Systems in C. Elsevier, Amsterdam (2010)
Pullum, L.L.: Software Fault Tolerance Techniques and Implementation. Artech House Inc, Norwood (2001)
Macher, G., Armengaud, E., Kreiner, C., Brenner, Schmittner, C., Ma, Z., Martin, H., Krammer, M.: Integration of Security in the Development Lifecycle of Dependable Automotive CPS. Handbook of Research for Cyber-Physical Systems Ubiquity. IGI Global (2017)
Macher, G., Sporer, H., Berlach, R., Armengaud, E., Kreiner, C.: SAHARA: a security-aware hazard and risk analysis method. In: Design, Automation Test in Europe Conference Exhibition, pp. 621–624 (2015)
Schmittner, C., Ma, Z., Gruber, T., Schoitsch, E.: Safety and Security Co-engineering of Connected, Intelligent, and Automated Vehicles. ERCIM News #109 (2017)
Acknowledgment
This work is supported by the EU projects EMC2 and AMASS. Research leading to these results has received funding from the EU ARTEMIS Joint Undertaking under grant agreement n° 621429 (project EMC2), EU ECSEL Joint Undertaking under grant agreement n° 692474 (project AMASS), and from the COMET K2 - Competence Centres for Excellent Technologies Programme of the Austrian Federal Ministry for Transport, Innovation and Technology (bmvit), the Austrian Federal Ministry of Science, Research and Economy (bmwfw), the Austrian Research Promotion Agency (FFG), the Province of Styria, and the Styrian Business Promotion Agency (SFG), the German Federal Ministry of Education and Research (BMBF), grant “CrESt, 01IS16043”.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2017 Springer International Publishing AG
About this paper
Cite this paper
Amorim, T. et al. (2017). Systematic Pattern Approach for Safety and Security Co-engineering in the Automotive Domain. In: Tonetta, S., Schoitsch, E., Bitsch, F. (eds) Computer Safety, Reliability, and Security. SAFECOMP 2017. Lecture Notes in Computer Science(), vol 10488. Springer, Cham. https://doi.org/10.1007/978-3-319-66266-4_22
Download citation
DOI: https://doi.org/10.1007/978-3-319-66266-4_22
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-66265-7
Online ISBN: 978-3-319-66266-4
eBook Packages: Computer ScienceComputer Science (R0)