Co-engineering of Safety and Security Life Cycles for Engineering of Automotive Systems

Bramberger, Robert; Martin, Helmut; Gallina, Barbara; Schmittner, Christoph

doi:10.1145/3394514.3394519

Cited by 14 publications

(6 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Nevertheless, no standard provides a structured co-engineering process to facilitate the communication between safety and security engineers. Since vehicles provide highly interconnected system functions realized in software, the systems are no longer isolated [5].…”

Section: Basic Conceptsmentioning

confidence: 99%

See 1 more Smart Citation

Safety & Security Alignment in Requirements Engineering Process for Autonomous Vehicles

Ribeiro,

Castro

2022

Anais Do Workshop Em Engenharia De Requisitos

View full text Add to dashboard Cite

Autonomous Vehicles (AVs) will transform the way we live and work. In order to cope with the complexity of AVs, we want to pro- vide an understandable process for organizations to analyze the areas of safety and security in requirements engineering for AVs. Initially, a bibliographic survey was carried out to verify the current state of the art. Based on this survey, we carried out a systematic literature review to find answers to our questions and better understand the requirements engineering context for AVs. From the review responses, a process will be built to unite safety and security analysis for AV. STPA, and Misuse Case techniques will be verified, and the advantages can be used in our process. Finally, we intend to evaluate and validate our re- search within the industry with requirements engineers in the automotive sector. This work is a step towards developing a body of knowledge in RE for AVs.

show abstract

Section: Basic Conceptsmentioning

confidence: 99%

“…Mitigating hazards therefore becomes the main requirement of the system, with system safety requirements being directly linked to the hazards [7]. Whereas safety deals with hazards and mishaps cybersecurity addresses threats resulting from malicious intent from external to the E/E system [5].…”

Section: Basic Conceptsmentioning

confidence: 99%

Safety & Security Alignment in Requirements Engineering Process for Autonomous Vehicles

Ribeiro,

Castro

2022

Anais Do Workshop Em Engenharia De Requisitos

View full text Add to dashboard Cite

show abstract

“…However, we suggest keeping the life-cycle domain-specific to retain risk calibration to automotive. To handle the complexity for co-engineering safety and security concerns, it essential for tool support, which might be remedied by the explicit systematisation and management of commonalities and variabilities [2]. However, the scalability of the approach needs further investigation.…”

Section: Related Workmentioning

confidence: 99%

Synchronisation of an Automotive Multi-concern Development Process

Skoglund

Warg

Hansson

et al. 2021

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Standardisation has a primary role in establishing common ground and providing technical guidance on best practices. However, as the methods for Autonomous Driving Systems design, validation and assurance are still in their initial stages, and several of the standards are under development or have been recently published, an established practice for how to work with several complementary standards simultaneously is still lacking. To bridge this gap, we present a unified chart describing the processes, artefacts, and activities for three road vehicle standards addressing different concerns: ISO 26262 -functional safety, ISO 21448 -safety of the intended functionality, and ISO 21434 -cybersecurity engineering. In particular, the need to ensure alignment between the concerns is addressed with a synchronisation structure regarding content and timing.

show abstract

“…In [17], the authors established a software architecture as a reference to develop SPL, dealing with information security aspects. SPLs are currently being targeted for application in CPS, as for some researchers, no standard provides a structured coengineering process to facilitate the communication between safety and security engineers [11]. For other researches, the information security must be a top priority when engineering C-CPSs as the engineering artefacts represent assets of high value, and the research is focused on the generation of new security requirements stemming from risks introduced by CPSs [10].…”

Section: Cybersecurity and Feature Model Analysismentioning

confidence: 99%

Definition and Verification of Security Configurations of Cyber-Physical Systems

et al. 2020

View full text Add to dashboard Cite

The proliferation of Cyber-Physical Systems (CPSs) is raising serious security challenges. These are complex systems, integrating physical elements into automated networked systems, often containing a variety of devices, such as sensors and actuators, and requiring complex management and data storage. This makes the construction of secure CPSs a challenge, requiring not only an adequate specification of security requirements and needs related to the business domain but also an adaptation and concretion of these requirements to define a security configuration of the CPS where all its components are related. Derived from the complexity of the CPS, their configurations can be incorrect according to the requirements, and must be verified. In this paper, we propose a grammar for specifying business domain security requirements based on the CPS components. This will allow the definition of security requirements that, through a defined security feature model, will result in a configuration of services and security properties of the CPS, whose correctness can be verified. For this last stage, we have created a catalogue of feature models supported by a tool that allows the automatic verification of security configurations. To illustrate the results, the proposal has been applied to automated verification of requirements in a hydroponic system scenario.

show abstract

Co-engineering of Safety and Security Life Cycles for Engineering of Automotive Systems

Cited by 14 publications

References 6 publications

Safety & Security Alignment in Requirements Engineering Process for Autonomous Vehicles

Safety & Security Alignment in Requirements Engineering Process for Autonomous Vehicles

Synchronisation of an Automotive Multi-concern Development Process

Definition and Verification of Security Configurations of Cyber-Physical Systems

Contact Info

Product

Resources

About