More and more ground transports are being used (vehicles, trucks, buses, taxis. . . ) and they remain one of the most dangerous means of transport in the world. However, vehicles are increasingly connected and autonomous with the aim of making travel safer, cleaner and more efficient. They are now able to share and communicate information between themselves and their environment in real time, helping to reduce accidents, traffic congestion and greenhouse gas emissions. These vehicles are Cyber-Physical Systems (CPS), i.e. systems made up of mechanisms that capable of controlling physical entities. In order to guarantee the robustness of such systems, they must meet two main criteria: safety and security. However, safety and security are currently dealt with independently. The reasons for this are both historical and normative. One idea is therefore to combine these two criteria in order to obtain the most robust vehicle possible. In this article, we propose to highlight recent advances in the combined study of safety and security, focused on the autonomous vehicle. To do this, we have carried out a preliminary analysis of the existing situation and a cartographic study listing the articles dealing with this combination. Various qualitative and quantitative analyses of the existing situation are present in the literature, generally focused on CPS. Then, based on this study, we grouped the articles according to two categories: those highlighting the interests and possibilities of such a combination and those presenting hybrid methods in detail.
Risk analyses of complex Cyber-Physical Systems represent a persistent challenge both in Functional Safety and in Cybersecurity. Those two domains traditionally conduct their risk analyses independently. However, that independence is now questioned. The emergence of Cybersecurity risks with Safety impacts, such as killwares, acts as a serious incentive to evolve conventional methods and risk cultures. The objective of this article is to define the potential links between Functional Safety and Cybersecurity risk analyses. To that end, we made our Safety and Cybersecurity teams work on two use cases and exchange their opinions on their respective methods: HARA in Safety and EBIOS RM in Cybersecurity. In the first use case, the Cybersecurity team studies with the EBIOS RM a safety-related function : the Safe Remote Control (SRC). In the second use case, the Safety team presents a SIL assessment for SRC to the Cybersecurity team which identifies parameters to influence. Through those activities, both teams identify several points of divergence and challenges to deal with in order to enrich Cybersecurity/Safety approaches.
Risk analyses of complex Cyber-Physical Systems represent a persistent challenge both in Functional Safety and in Cybersecurity. Those two domains traditionally conduct their risk analyses independently. However, that independence is now questioned. The emergence of Cybersecurity risks with Safety impacts, such as killwares, acts as a serious incentive to evolve conventional methods and risk cultures. The objective of this article is to define the potential links between Functional Safety and Cybersecurity risk analyses. To that end, we made our Safety and Cybersecurity teams work on two use cases and exchange their opinions on their respective methods: HARA in Safety and EBIOS RM in Cybersecurity. In the first use case, the Cybersecurity team studies with the EBIOS RM a safety-related function : the Safe Remote Control (SRC). In the second use case, the Safety team presents a SIL assessment for SRC to the Cybersecurity team which identifies parameters to influence. Through those activities, both teams identify several points of divergence and challenges to deal with in order to enrich Cybersecurity/Safety approaches.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.