On the meaning of security for safety (S4S)

Paul, Saswata

doi:10.2495/safe150321

Cited by 8 publications

(2 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Hence, we argue that the domain of safety science should not only comprise hazards as risk sources that could lead to physical harm scenarios. Instead, there is a need to include the subdomain described by Stephane Paul as "security for safety" (Paul, 2015;Paul et al, 2016), incorporating the subset of security threats leading to physical harm scenarios. The security for safety domain should include both physical attacks (traditionally associated to sabotage and terrorism) and cyberphysical attacks.…”

Section: Overlaps Of Safety and Security In Cpssmentioning

confidence: 99%

An integrated safety and security analysis for cyber-physical harm scenarios

2021

View full text Add to dashboard Cite

Section: Overlaps Of Safety and Security In Cpssmentioning

confidence: 99%

An integrated safety and security analysis for cyber-physical harm scenarios

2021

View full text Add to dashboard Cite

“…This malicious program targeted general-purpose and high-end Programmable Logic Controllers (PLC). Because of the increasing number of cyber-attacks against safety-critical systems, the safety engineering community has started to address those cyber-security threats, which can alter the proper functioning of safety-related systems [2,3]. In this paper, the problem statement is first described and an analysis of existing dynamic software updating (DSU) techniques applicable to industrial systems then provided.…”

Section: Introductionmentioning

confidence: 99%

Analysis of existing dynamic software updating techniques for safe and secure industrial control systems

Mugarza¹,

Parra²,

Jacob³

2018

Int. J. SAFE

View full text Add to dashboard Cite

Higher interconnectivity among devices, machines, the cloud and humans is envisioned in the actual trend of automation, also known as Industrial Internet of Things (IIoT). These industrial control systems, which may require high availability and/or safety related capabilities, are no longer isolated from the corporate environment or Internet. Software updates will be needed during the product life cycle, due to the long service life, the increasing number of security related vulnerabilities discovered on these industrial control systems and the high interconnectivity desired in IIoT. These updates aim at fixing all these security weaknesses, bugs and vulnerabilities that could appear, while the required safety integrity levels are ensured. Security-related concerns have just been addressed by the safety engineering community, because of the increasing number of cyber-attacks against safety-critical systems, such as Stuxnet. Moreover, system shut-downs caused by software updates could not be plausible when high availability is required. Typically, in order to perform the software update, the whole industrial process or the production is halted, so that the software upgrade is safely applied. However, this scenario might not be applied in critical infrastructures, such as nuclear or hydroelectrical power plants, where these production and service interruptions are not acceptable from the business and service point of view. This article presents an analysis of existing dynamic software updating techniques, which may be applied for safe and secure industrial control systems. These techniques aim at updating the running code, without the need of a halt and restart, increasing the availability of the industrial system.

show abstract

Cetratus: A framework for zero downtime secure software updates in safety‐critical systems

2020

View full text Add to dashboard Cite

SummarySafety‐critical systems are evolving into complex, networked, and distributed systems. As a result of the high interconnectivity among all networked systems and of potential security threats, security countermeasures need to be incorporated. Nonetheless, albeit cutting‐edge security measures are adopted and incorporated during the system development, such as latest recommended encryption algorithms, these protection mechanisms may turn out obsolete because of the long operational periods. New security flaws and bugs are continuously detected. Software updates are then essential to restore the security level of the system. However, system shutdowns may not be acceptable when high availability is required. As expressed by the European Union Agency for Network and Information Security (ENISA) “the research in the area of patching and updating equipment without disruption of service and tools” is needed. In this article, a novel live updating approach for zero downtime safety‐critical systems named Cetratus is presented. Cetratus, which is based on a quarantine‐mode execution and monitoring, enables the update of non‐safety‐critical software components while running, without compromising the safety integrity level of the system. The focus of this work lies on the incorporation of leading‐edge security mechanisms while safety‐related software components will remain untouched. Other non‐safety‐related software components could also be updated.

show abstract

On the meaning of security for safety (S4S)

Cited by 8 publications

References 5 publications

An integrated safety and security analysis for cyber-physical harm scenarios

An integrated safety and security analysis for cyber-physical harm scenarios

Analysis of existing dynamic software updating techniques for safe and secure industrial control systems

Cetratus: A framework for zero downtime secure software updates in safety‐critical systems

Contact Info

Product

Resources

About