Unified Security and Safety Risk Assessment - A Case Study on Nuclear Power Plant

Chen, Yean-Ru; Chen, Sao-Jie; Hsiung, Pao-Ann; Chou, I-Hsin

doi:10.1109/tsa.2014.13

Cited by 12 publications

(17 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…FACT Graph [6], IV. FMVEA [7], V. Unified Security and Safety Risk Assessment [8], VI. Extended CFT [9], and VII.…”

Section: Integrated Safety and Security Risk Assessment Methodsmentioning

confidence: 99%

“…The steps involved in the Unified Security and Safety Risk Assessment method [8] are as follows: I. The system boundary, system functions, system and data criticality, system and data sensitivity are identified; II.…”

Section: Unified Security and Safety Risk Assessment Methodsmentioning

confidence: 99%

“…Year Country Citations EFT [10] 2009 Italy 63 Extended CFT [9] 2013 Germany 17 FACT Graph [6] 2015 Singapore 5 CHASSIS [5] 2015 Austria 4 FMVEA [7] 2014 Austria 4 SAHARA [4] 2015 Austria 2 Unified Security and Safety Risk Assessment [8] 2014 Taiwan 1…”

Section: Integrated Safety and Security Risk Assessment Methodsmentioning

confidence: 99%

“…High pressure core flooder case-study [8] Power and Utilities Extended CFT Adaptive cruise control system [9] Transportation EFT Release of toxic substance into the environment example [10] Chemical 6 Conclusions and Future Work…”

Section: Unified Security and Safety Risk Assessmentmentioning

confidence: 99%

See 3 more Smart Citations

Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications

Chockalingam

Hadžiosmanović²,

Pieters

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Over the last years, we have seen several security incidents that compromised system safety, of which some caused physical harm to people. Meanwhile, various risk assessment methods have been developed that integrate safety and security, and these could help to address the corresponding threats by implementing suitable risk treatment plans. However, an overarching overview of these methods, systematizing the characteristics of such methods, is missing. In this paper, we conduct a systematic literature review, and identify 7 integrated safety and security risk assessment methods. We analyze these methods based on 5 different criteria, and identify key characteristics and applications. A key outcome is the distinction between sequential and non-sequential integration of safety and security, related to the order in which safety and security risks are assessed. This study provides a basis for developing more effective integrated safety and security risk assessment methods in the future.

show abstract

“…FACT Graph [6], IV. FMVEA [7], V. Unified Security and Safety Risk Assessment [8], VI. Extended CFT [9], and VII.…”

Section: Integrated Safety and Security Risk Assessment Methodsmentioning

confidence: 99%

Section: Unified Security and Safety Risk Assessment Methodsmentioning

confidence: 99%

Section: Integrated Safety and Security Risk Assessment Methodsmentioning

confidence: 99%

Section: Unified Security and Safety Risk Assessmentmentioning

confidence: 99%

See 2 more Smart Citations

Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications

Chockalingam

Hadžiosmanović²,

Pieters

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…The approach allows to focus on vulnerable states in order to avoid threats to exploit them and create disruptions, and eventual losses. 5) Chen et al (2014) [13] build upon extending the NIST 800-30 [14] methodology to consider safety aspects contributing to risk assessment by establishing a functional relationship between vulnerabilities, threats and hazards. Hazards occurrence levels are assigned depending on a value of a hazardthreat conditional probability.…”

Section: ) Raspotning Et Al (2012) [10] Present Combined Harmmentioning

confidence: 99%

Safety and Security Co-Analyses: A Systematic Literature Review

Lisova

Šljivo

Čaušević

2019

IEEE Systems Journal

View full text Add to dashboard Cite

Latest technological trends lead towards systems connected to public networks even in critical domains. Bringing together safety and security work is becoming imperative, as a connected safety-critical system is not safe if it is not secure. The main objective of this study is to investigate the current status of safety and security co-analysis in system engineering by conducting a Systematic Literature Review. The steps of the review are the following: the research questions identification; agreement upon a search string; applying the search string to chosen databases; a selection criterion formulation for the relevant publications filtering; selected papers categorization and analysis. We focused on the early system development stages and identified 33 relevant publications categorized as: combined safety and security approaches that consider the mutual influence of safety and security; safety informed security approaches that consider influence of safety on security; security informed safety approaches that consider influence of security on safety. The results showed that a number of identified approaches are driven by needs in fast developing application areas, e.g., automotive, while works focusing on combined analysis are mostly application area independent. Overall, the study shows that safety and security co-analysis is still a developing domain.

show abstract

A goal‐driven approach for the joint deployment of safety and security standards for operators of essential services

Ponsard

Grandclaudon

Massonet

2021

J Software Evolu Process

View full text Add to dashboard Cite

Summary Designing safety‐critical software in domains ensuring essential services like transportation, energy, or health requires high assurance techniques and compliance with domain specific standards. As a result of the global interconnectivity and the evolution toward cyber‐physical systems, the increasing exposure to cyber threats calls for the adoption of cyber security standards and frameworks. Although safety and security have different cultures, both fields share similar concepts and tools and are worth being investigated together. This paper provides the background to understand emerging co‐engineering approaches. It advocates for the use of a model‐based approach to provide a sound risk‐oriented process and to capture rationales interconnecting top‐level standards/directives to concrete safety/security measures. We show the benefits of adopting goal‐oriented analysis that can be transposed later to domain‐specific frameworks. Both qualitative and quantitative reasoning aspects are analyzed and discussed, especially to support trade‐off analysis. Our work is driven by a representative case study in drinking water utility in the scope of the NIS regulation for operator of essential services.

show abstract

Unified Security and Safety Risk Assessment - A Case Study on Nuclear Power Plant

Cited by 12 publications

References 8 publications

Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications

Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications

Safety and Security Co-Analyses: A Systematic Literature Review

A goal‐driven approach for the joint deployment of safety and security standards for operators of essential services

Contact Info

Product

Resources

About