XANDAR: X-by-Construction Design framework for Engineering Autonomous & Distributed Real-time Embedded Software Systems

“…One of the project goals is to improve software development productivity and quality for autonomous and distributed realtime embedded systems [12], [13]. This goal can be achieved by providing holistic software design methods and architectures that guarantee functional and non-functional properties "by-construction" defined as [16]: "A step-wise refinement process from specification to code that automatically generates software implementations that by construction satisfy specific functional and non-functional properties.…”

“…One way to approach this complex engineering problem is considering both functional and non-functional properties (safety, security, reliability), and systematically integrating them across system design and operational life cycle. The XANDAR project proposes an X-by-Construction approach [12], [13], which advocates the refinement and adoption of holistic cybersecurity engineering process. It shall allow manufacturers of safety-critical and cyber-physical system manufacturers to scope, identify, analyse and assess the cybersecurity risks and safety hazards [14], [15].…”

“…This paper focuses solely on the non-functional aspects of the project and builds upon previous publications [12], [13]. It presents the holistic cybersecurity engineering process guided by ISO 21434, as part of the initial project planning stage.…”

XANDAR: A holistic Cybersecurity Engineering Process for Safety-critical and Cyber-physical Systems

“…One of the project goals is to improve software development productivity and quality for autonomous and distributed realtime embedded systems [12], [13]. This goal can be achieved by providing holistic software design methods and architectures that guarantee functional and non-functional properties "by-construction" defined as [16]: "A step-wise refinement process from specification to code that automatically generates software implementations that by construction satisfy specific functional and non-functional properties.…”

“…One way to approach this complex engineering problem is considering both functional and non-functional properties (safety, security, reliability), and systematically integrating them across system design and operational life cycle. The XANDAR project proposes an X-by-Construction approach [12], [13], which advocates the refinement and adoption of holistic cybersecurity engineering process. It shall allow manufacturers of safety-critical and cyber-physical system manufacturers to scope, identify, analyse and assess the cybersecurity risks and safety hazards [14], [15].…”

“…This paper focuses solely on the non-functional aspects of the project and builds upon previous publications [12], [13]. It presents the holistic cybersecurity engineering process guided by ISO 21434, as part of the initial project planning stage.…”

XANDAR: A holistic Cybersecurity Engineering Process for Safety-critical and Cyber-physical Systems

“…This process shall enable system designers to systematically define, assess, design, implement, verify, and validate the system's safety and security requirements through the system design phases and operational life cycle. The RA2 shall establish resilience [4] by providing prevention, detection, response and recovery capabilities to ensure security and functional safety (fail-operational, fail-safe and fault-tolerant) [5], [11], [12] of UAM missions. This paper extends [9] and complements previously published research works [12], [13], [14], [15].…”

“…The RA2 shall establish resilience [4] by providing prevention, detection, response and recovery capabilities to ensure security and functional safety (fail-operational, fail-safe and fault-tolerant) [5], [11], [12] of UAM missions. This paper extends [9] and complements previously published research works [12], [13], [14], [15]. In this paper, the Resilient Avionics Architecture for Flight Assistance System (RA2FAS) has been chosen as an experimental use case.…”

Cybersecurity Engineering: Bridging the Security Gaps in Avionics Architectures and DO-326A/ED-202A

Towards Automating a Software-Centered Development Process that considers Timing Properties