Safety by Construction: Pattern-Based Application of Safety Mechanisms in XANDAR

Dörr, Tobias; Schade, Florian; Masing, Leonard; Becker, Jürgen; Κεραμίδας, Γεώργιος; Antonopoulos, Christos; Mavropoulos, Michail; Kelefouras, Vasilios; Voros, Nikolaos S.

doi:10.1109/isvlsi54635.2022.00081

Cited by 3 publications

(5 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This enables the identification of appropriate risk mitigation strategies which then can be implemented by designing and deploying suitable security measures to enhance the security of the safety-critical system. This paper extends [8] and complements published works [9], [10], [11].…”

Section: Introductionsupporting

confidence: 87%

“…The pattern-based security approach enables software developers to incorporate security into their designs using automatic code generation tools (Fig. 1), even without specialized security expertise [11]. These system design processes are often manual, time-consuming, and error-prone, involving multiple stakeholders.…”

Section: Pattern-based Securitymentioning

confidence: 99%

“…Automation is ideal to reduce errors, minimise human involvement, alleviate the workload, and enhance system resilience. Formal representation of these security and safety controls as patterns facilitates this approach, allowing developers to incorporate safety and security using automatic code generation tools [11]. However, functional requirements such as LET and WCET are equally important for the correct and reliable operation of the software execution [13].…”

Section: Pattern-based Securitymentioning

confidence: 99%

See 2 more Smart Citations

A Comparative Analysis of Security Patterns for Enhancing Security in Safety-Critical Systems

Yengec-Tasdemir,

Siddiqui,

Sezer

et al. 2023

2023 IEEE 36th International System-on-Chip Conference (SOCC)

View full text Add to dashboard Cite

Security patterns play a pivotal role in enhancing the safety and security of safety-critical systems. This study delves into the impact of adding pattern-based security on the functional requirements of the safety-critical software function. This paper introduces a pattern-based security approach and then analyzes the cost of integrating three exemplary security patterns (data confidentiality, integrity and authenticity) on the execution time of safety-critical functions. Evaluating execution times across diverse data sizes sheds light on the cost of adding pattern-based security and its impact on the functional timing (logical execution time, worst-case execution time) of the software functions of a system. Our technical findings reveal crucial tradeoffs between security and efficiency, aiding system designers in making informed decisions. These insights are crucial for the automatic code generation tools, to find the appropriate decomposition and mapping of a security enhanced software function that meets the functional timing requirements. By adhering to the ISO/SAE 21434 international standards, secure software development practices are promoted, thereby improving productivity, quality, and safety. The integration of experimental results informs the overall security posture of these systems, aiding in effective secure life-cycle management.

show abstract

Section: Introductionsupporting

confidence: 87%

Section: Pattern-based Securitymentioning

confidence: 99%

Section: Pattern-based Securitymentioning

confidence: 99%

See 1 more Smart Citation

A Comparative Analysis of Security Patterns for Enhancing Security in Safety-Critical Systems

Yengec-Tasdemir,

Siddiqui,

Sezer

et al. 2023

2023 IEEE 36th International System-on-Chip Conference (SOCC)

View full text Add to dashboard Cite

show abstract

“…The RA2 shall establish resilience [4] by providing prevention, detection, response and recovery capabilities to ensure security and functional safety (fail-operational, fail-safe and fault-tolerant) [5], [11], [12] of UAM missions. This paper extends [9] and complements previously published research works [12], [13], [14], [15]. In this paper, the Resilient Avionics Architecture for Flight Assistance System (RA2FAS) has been chosen as an experimental use case.…”

Section: Introductionsupporting

confidence: 59%

Cybersecurity Engineering: Bridging the Security Gaps in Avionics Architectures and DO-326A/ED-202A

Siddiqui,

Ahlbrecht,

Khan

et al. 2023

2023 IEEE/AIAA 42nd Digital Avionics Systems Conference (DASC)

View full text Add to dashboard Cite

“…This tool chain includes all the stages, from requirements analysis to code integration on the target, and V&V. The project uses a model-based system design approach and leverage automatic model synthesis and software parallelization techniques to meet specific non-functional requirements. This lays the foundation for a new paradigm known as X-by-Construction (XbC) [3], ensuring systems are constructed with safety and security capabilities by-design [10], [11], [12].…”

Section: Introductionmentioning

confidence: 99%

XANDAR: Verification & Validation Approach for Safety-critical Systems

Sonigara,

Sezer,

Siddiqui

et al. 2023

2023 IEEE 36th International System-on-Chip Conference (SOCC)

Self Cite

View full text Add to dashboard Cite

The integration of connected and autonomous technologies in safety-critical brought significant system design challenges. These systems are constantly evolving and becoming more complex. With their connection to the cloud and the internet, these safety-critical systems are now exposed to greater risks of cyber-attacks, which poses new challenges to their safety, reliability and resilience. To approach these complex system design challenges, this paper proposes XANDAR's Verification & Validation strategy using Static Analysis, Timing Analysis, Model-in-loop and Network simulation tool. To ensure functional correctness, the proposed XANDAR Verification and Validation approach utilizes early integration of simulation and static analysis techniques during the development cycle. This proposed approach differs from existing methods by emphasizing early integration, rather than applying it to later stages of development cycle to begin verification. In addition, the proposed approach utilizes timing analysis to ensure non-functional timing aspects meet the timing requirements. The approach applies tools such as Polyspace Bug Finder and Code Prover for static analysis, Timing Architect for timing analysis, NS3 simulator for network architecture simulation. The proposed approach aims to ensure system safety and security through a rigorous and comprehensive verification process. These verification approaches will be validated by applying it to automotive and avionics use cases.

show abstract

Safety by Construction: Pattern-Based Application of Safety Mechanisms in XANDAR

Cited by 3 publications

References 7 publications

A Comparative Analysis of Security Patterns for Enhancing Security in Safety-Critical Systems

A Comparative Analysis of Security Patterns for Enhancing Security in Safety-Critical Systems

Cybersecurity Engineering: Bridging the Security Gaps in Avionics Architectures and DO-326A/ED-202A

XANDAR: Verification & Validation Approach for Safety-critical Systems

Contact Info

Product

Resources

About