Modeling the Effects of Software on Safety and Reliability in Complex Embedded Systems

Steiner, Max; Keller, Patric; Liggesmeyer, Peter

doi:10.1007/978-3-642-33675-1_43

Cited by 6 publications

(3 citation statements)

References 10 publications

(17 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, no new constructs were developed to evaluate the interactions of the properties. Similarly, the component fault trees approach was developed for security and safety coanalysis [99]. The authors extended the statistical FTA, wherein they focused on the system components and reusability to analyse safety and security qualitatively.…”

Section: Unified Safety and Security Analysis Frameworkmentioning

confidence: 99%

An Overview of Safety and Security Analysis Frameworks for the Internet of Things

et al. 2023

View full text Add to dashboard Cite

The rapid progress of the Internet of Things (IoT) has continued to offer humanity numerous benefits, including many security and safety-critical applications. However, unlocking the full potential of IoT applications, especially in high-consequence domains, requires the assurance that IoT devices will not constitute risk hazards to the users or the environment. To design safe, secure, and reliable IoT systems, numerous frameworks have been proposed to analyse the safety and security, among other properties. This paper reviews some of the prominent classical and model-based system engineering (MBSE) approaches for IoT systems’ safety and security analysis. The review established that most analysis frameworks are based on classical manual approaches, which independently evaluate the two properties. The manual frameworks tend to inherit the natural limitations of informal system modelling, such as human error, a cumbersome processes, time consumption, and a lack of support for reusability. Model-based approaches have been incorporated into the safety and security analysis process to simplify the analysis process and improve the system design’s efficiency and manageability. Conversely, the existing MBSE safety and security analysis approaches in the IoT environment are still in their infancy. The limited number of proposed MBSE approaches have only considered limited and simple scenarios, which are yet to adequately evaluate the complex interactions between the two properties in the IoT domain. The findings of this survey are that the existing methods have not adequately addressed the analysis of safety/security interdependencies, detailed cyber security quantification analysis, and the unified treatment of safety and security properties. The existing classical and MBSE frameworks’ limitations obviously create gaps for a meaningful assessment of IoT dependability. To address some of the gaps, we proposed a possible research direction for developing a novel MBSE approach for the IoT domain’s safety and security coanalysis framework.

show abstract

Section: Unified Safety and Security Analysis Frameworkmentioning

confidence: 99%

An Overview of Safety and Security Analysis Frameworks for the Internet of Things

et al. 2023

View full text Add to dashboard Cite

show abstract

“…The Independence relationship can simply be defined as an OR gate, whereby either the security scenario or the safety scenario lead to the eventual risk condition, an initial investigation of this has has been done before [28], and can be visualised in Fig. 3 for our case study.…”

Section: Independencementioning

confidence: 99%

“…Since now both a safety assessment is present as well as a security assessment, there needs to be a choice as to how the OR gate quantification is performed. Whilst this topic in itself warrants a deeper discussion orthogonal to the contributions of this work, a naive approach is to employ the approach from Steiner and Liggesmeyer and calculate a composition of risk-probability pairs leading to the OR gate outcome [28]. In the case study we simple see that the server outage may be caused by an active attacker (attack tree), or a failure of the update process and DNS misconfiguration (safety tree), or both.…”

Section: Independencementioning

confidence: 99%

Towards Interdependent Safety Security Assessments Using Bowties

Arnaboldi

Aspinall

2022

Lecture Notes in Computer Science

View full text Add to dashboard Cite

We present a way to combine security and safety assessments using Bowtie Diagrams. Bowties model both the causes leading up to a central failure event and consequences which arise from that event, as well as barriers which impede events. Bowties have previously been used separately for security and safety assessments, but we suggest that a unified treatment in a single model can elegantly capture safety-security interdependencies of several kinds. We showcase our approach with the example of the October 2021 Facebook DNS shutdown, examining the chains of events and the interplay between the security and safety barriers which caused the outage.

show abstract

Introduction to IWDE 2012

Köppen¹,

Saake

2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Modeling the Effects of Software on Safety and Reliability in Complex Embedded Systems

Cited by 6 publications

References 10 publications

An Overview of Safety and Security Analysis Frameworks for the Internet of Things

An Overview of Safety and Security Analysis Frameworks for the Internet of Things

Towards Interdependent Safety Security Assessments Using Bowties

Introduction to IWDE 2012

Contact Info

Product

Resources

About