Future automotive systems will exhibit increased levels of automation as well as ever tighter integration with other vehicles, traffic infrastructure, and cloud services. From safety perspective, this can be perceived as boon or baneit greatly increases complexity and uncertainty, but at the same time opens up new opportunities for realizing innovative safety functions. Moreover, cyberse curity becomes important as additional concern because attacks are now much more likely and severe. Unfortunately, there is lack of experience with security concerns in context of safety engineering in general and in automotive safety departments in particular. To remediate this problem, we propose a systematic pattern-based approach that interlinks safety and security patterns and provides guidance with respect to selection and combination of both types of patterns in context of system engineering. The application of a combined safety and security pattern engineering workflow is shown and demonstrated by an automotive use case scenario.
Automotive systems will exhibit increased levels of automation as well as ever tighter integration with other vehicles, traffic infrastructure, and cloud services. From safety perspective, this can be perceived as boon or bane-it greatly increases complexity and uncertainty, but at the same time opens up new opportunities for realizing innovative safety functions. Moreover, cybersecurity becomes important as additional concern because attacks are now much more likely and severe. However, there is a lack of experience with security concerns in context of safety engineering in general and in automotive safety departments in particular. To address this problem, we propose a systematic pattern-based approach that interlinks safety and security patterns and provides guidance with respect to selection and combination of both types of patterns in context of system engineering. A combined safety and security pattern engineering workflow is proposed to provide systematic guidance to support non-expert engineers based on best practices. The application of the approach is shown and demonstrated by an automotive case study and different use case scenarios.
The Internet of Things (IoT) is the key facilitator for digital manufacturing (Industry 4.0, Cyber-physical Systems), as well as for smart, intelligent products, services and processes. In the IoT, increasingly many product and process functions become safety-critical and exposed to IT security attacks. This adds tremendous complexity to product and process design, which this paper shows by using the automotive sector as a particularly challenging example. The article proposes a new logic and method for tackling the major challenges of design for functional safety and IT security which is essentially based on reducing the design solutions' complexities by integration. This is a very important and emerging area in design under 'design for security'. No changes. Section 3 should also include latest research on cyber-secure industrial control systems. We extended Section 3 by one paragraph elaborating on the CPS and ICS and citing three of the still very few key references on the subject of the integration of cybersecurity and functional safety in the design of ICS (new references [5,6,7]). To make the transition to the automotive sector, we have added a statement explaining the since industry is still the min driving force in the cybersecurity/safety integration, most relevant works can be found in sector-specific research and industry practice publications. You need to discuss role of people, hardware and software in the security of ESCL. We interpret this as a supporting remark, since we indicate in several places that the key idea and objective of our research is to enable an integrated design view on cybersecurity and functional safety aspects. Integrated design is essentially about enabling human experts from several different fields to collaborate efficiently in the design process, which is exactly what we search to facilitate by our method. Furthermore, in table 1 we established a vehicular vocabulary leveraging the communication between cybersecurity and safety experts. Also link between safety and cyber security is well presented. Good work. No changes. The paper introduces a new logic to drive safety and security concerns in cyber-physical systems. The proposed method is applied on an industrial case. No changes. The promised methodology is too shallow by far; New logic engineering methods for CPS. Deliberately and due to the requirements we were having for this research, we have based our method and our related research methodology on two emerging industry standards. Therefore, it is true that what we propose is rather a novel method than a profound methodology. We also agree to the reviewer that this methods represents a now logic of applying existing engineering methods for achieving integration n design. In order to take this explicitly into account, we have replaced the word "methodology" both in the abstract and the body of the text by "method" and/or "new logic of engineering methods".
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.