A comparative risk analysis on CyberShip system with STPA-Sec, STRIDE and CORAS

Sahay, Rishikesh; Estay, Daniel Alberto Sepúlveda; Meng, Weizhi; Jensen, Christian Damsgaard; Barfod, Michael Bruhn

doi:10.1016/j.cose.2023.103179

Cited by 17 publications

(3 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…STPA-Sec maintains the same four basic steps as STPA, but essentially introduces threat/vulnerability identification in the last step [ 44 ]. Sahay et al [ 45 ] evaluated and compared the application of STPA-Sec, STRIDE, and CORAS in identifying threats and vulnerabilities to the cybership system. Based on the results of the analysis, STRIDE provides a structured approach to highlight threats to the system that can be combined with CORAS and STPA-Sec to make them more effective.…”

Section: Related Workmentioning

confidence: 99%

Complying with ISO 26262 and ISO/SAE 21434: A Safety and Security Co-Analysis Method for Intelligent Connected Vehicle

Li,

Liu,

Liu

et al. 2024

Sensors

View full text Add to dashboard Cite

A cyber-physical system (CPS) integrates communication and automation technologies into the operational processes of physical systems. Nowadays, as a complex CPS, an intelligent connected vehicle (ICV) may be exposed to accidental functional failures and malicious attacks. Therefore, ensuring the ICV’s safety and security is crucial. Traditional safety/security analysis methods, such as failure mode and effect analysis and attack tree analysis, cannot provide a comprehensive analysis for the interactions between the system components of the ICV. In this work, we merge system-theoretic process analysis (STPA) with the concept phase of ISO 26262 and ISO/SAE 21434. We focus on the interactions between components while analyzing the safety and security of ICVs to reduce redundant efforts and inconsistencies in determining safety and security requirements. To conquer STPA’s abstraction in describing causal scenarios, we improved the physical component diagram of STPA-SafeSec by adding interface elements. In addition, we proposed the loss scenario tree to describe specific scenarios that lead to unsafe/unsecure control actions. After hazard/threat analysis, a unified risk assessment process is proposed to ensure consistency in assessment criteria and to streamline the process. A case study is implemented on the autonomous emergency braking system to demonstrate the validation of the proposed method.

show abstract

Section: Related Workmentioning

confidence: 99%

Complying with ISO 26262 and ISO/SAE 21434: A Safety and Security Co-Analysis Method for Intelligent Connected Vehicle

Li,

Liu,

Liu

et al. 2024

Sensors

View full text Add to dashboard Cite

show abstract

“…The study in [24] applied FTA and STPA analysis methods to a safety critical BBW system, and a comparison of the two reveals that STPA identifies more causal factors. The study in [25] compared three risk analysis methods to identify threats and vulnerabilities in a CyberShip system, and STPA is good at identifying hazards by looking at the control actions and the structure of the CyberShip system. Therefore, STPA techniques, upon which systems thinking is based, are uniquely suited in the field of hazard analysis of complex systems to accurately and more broadly identify causal factors.…”

Section: Introductionmentioning

confidence: 99%

Analysis of Energy Laboratory Safety Management in China Based on the System-Theoretic Accident Model and Processes/System Theoretic Process Analysis STAMP/STPA Model

Zhong

Jiang

2023

Sustainability

View full text Add to dashboard Cite

Laboratory safety in colleges and universities has received wider attention as a critical annual inspection by the Ministry of Education. The laboratory environment is complex and diverse, with many hazard factors. To effectively prevent the occurrence of laboratory emergencies in universities, the STAMP/STPA model is used to analyze the safety of energy laboratory safety management in a resource-based university. Between 2021 and 2022, we carried out laboratory safety inspection and field observation for a mining resource university in China, and identified 16 unsafe control actions in the field of energy laboratory safety management in the university, and identified ten critical causal factors leading to unsafe control actions. Combining the actual situation of the mining resource university, the short-term countermeasures and long-term countermeasures to improve laboratory safety management are proposed to guarantee the university’s laboratory safety management. Moreover, the research results have suggestions for the construction and development of laboratory safety management at similar universities.

show abstract

“…Considering the security aspect Although we have not considered security aspects at this stage, we believe it would be appropriate to incorporate the STRIDE methodology, a vulnerability assessment method, into the process for conducting a comparison between the conventional transaction model and the new approach [26].…”

mentioning

confidence: 99%

A Peer-to-Peer Energy Trading Model for Optimizing Both Efficiency and Fairness

2023

View full text Add to dashboard Cite

In recent years, there has been a growing global trend towards transitioning from centralized energy systems to distributed or decentralized models, with the aim of promoting the widespread utilization of renewable energy sources. As a result, the concept of direct energy trading among consumers has garnered considerable attention as a means to effectively harness the potential of distributed energy systems. However, in this decentralized trading scenario, certain consumers may encounter challenges in receiving electricity from their preferred suppliers due to limited supply capacities. As a result of this constraint, there is a reduction in the advantages enjoyed by consumers. While previous studies have predominantly focused on optimizing resource allocation efficiency, the issue of equitable consumer benefits has often been overlooked. Therefore, it is crucial to develop a trading mechanism that considers the preferences of market participants, in addition to balancing supply and demand. Such a mechanism aims to enhance both fairness and efficiency in the market. This paper introduces the formulation of a single-objective optimization and multi-objective optimization problem for an electricity market trading mechanism. To address this challenge, two single-objective algorithms and six evolutionary algorithms (EAs) are employed to solve the optimization problem. By analyzing the simulation results, this study demonstrates the efficacy of the chosen evolutionary algorithms (EAs) and a single-objective optimization approach in effectively optimizing both the utilization of resources and the equitable distribution of consumer benefits.

show abstract

A comparative risk analysis on CyberShip system with STPA-Sec, STRIDE and CORAS

Cited by 17 publications

References 17 publications

Complying with ISO 26262 and ISO/SAE 21434: A Safety and Security Co-Analysis Method for Intelligent Connected Vehicle

Complying with ISO 26262 and ISO/SAE 21434: A Safety and Security Co-Analysis Method for Intelligent Connected Vehicle

Analysis of Energy Laboratory Safety Management in China Based on the System-Theoretic Accident Model and Processes/System Theoretic Process Analysis STAMP/STPA Model

A Peer-to-Peer Energy Trading Model for Optimizing Both Efficiency and Fairness

Contact Info

Product

Resources

About