631 research outputs found

    Towards Identifying and closing Gaps in Assurance of autonomous Road vehicleS - a collection of Technical Notes Part 1

    Get PDF
    This report provides an introduction and overview of the Technical Topic Notes (TTNs) produced in the Towards Identifying and closing Gaps in Assurance of autonomous Road vehicleS (Tigars) project. These notes aim to support the development and evaluation of autonomous vehicles. Part 1 addresses: Assurance-overview and issues, Resilience and Safety Requirements, Open Systems Perspective and Formal Verification and Static Analysis of ML Systems. Part 2: Simulation and Dynamic Testing, Defence in Depth and Diversity, Security-Informed Safety Analysis, Standards and Guidelines

    The UAVs threat to airport security: risk analysis and mitigation

    Get PDF
    Purpose: This research studies the UAV incidents in the vicinity of worldwide airports in order to deliver a quantitative and qualitative analysis of this phaenomenon, to analyse the risks associated to this threat and propose mitigation measures that brings this risk to an ‘acceptable’ level. Methodology: A population of 139 ‘serious UAV incidents in the vicinity of worldwide airports’ has been constituted on the basis of the FAA and NASA databases and articles published on the Web by online media. This phaenomenon has then been analysed quantitatively using descriptive statistics techniques and qualitatively by analysing in-depth some representative incidents. A risk analysis has then been performed based on the FAA Safety Risk Management 5-steps process to identify the hazards i.e. the root causes of those UAV incidents, determine their outcome i.e. negative consequences that jeopardize airports objectives and assign them a severity level and likelihood i.e. frequency level. Analysed risks have then been assessed based on FAA ARP Risk Matrix. Mitigation measures (prevention, deterrence, denial, detection, neutralisation) have been identified following a ‘Defence-in-Depth’ approach. Findings: The findings of the study are that those UAV incidents are more numerous than anticipated and happen higher and further from the airports than expected: they happen not only in CTRs but also in TMAs. This has an impact on the mitigation measures that shall not only be deployed at airports side but also be on-boarded in manned aircrafts. Originality: To our knowledge, no study has combined different sources to constitute such a population focused on ‘serious’ UAVs incidents around airports worldwide, has applied the official FAA Safety Risk Management process to assess this risk and followed a structured ‘Defence-in-Depth’ approach typically used in Cybersecurity to mitigate this risk.Peer Reviewe

    RISK-INFORMED DECISION MAKING AND THE REGULATION OF SMALL MODULAR REACTORS

    Get PDF
    This thesis argues that small modular nuclear reactors (SMRs) can be regulated within the existing Canadian nuclear regulatory framework in light of existing regulatory principles, and that regulatory flexibility and the development of risk management practices will be crucial to accommodate the many challenges associated with their regulation. SMRs are characterized by their small size, modularity and innovative approaches to design. Though advantageous, these novel characteristics introduce uncertain and novel risks that pose challenges to Canada’s risk assessment and risk management practices. The most significant challenge to Canada’s regulators is how SMRs can be safely regulated while imposing regulations that have the appropriate scope, detail and content for each proposed SMR project. This thesis argues that Canada’s risk-informed decision-making process must be bolstered to mitigate the variability and uncertain risks of SMRs. Emphasis is placed on the utilization of the graded approach to accommodate the variability of SMR projects and demonstrate that associated risks meet regulatory objectives. In addition to the graded approach, this thesis proposes risk management approaches that may better utilize uncertainty analyses to ensure that conservative measures are appropriate and that regulatory objectives are satisfied. A method to elicit and assess expert judgment for risk-informed decision-making is proposed to alleviate risk uncertainty and fill gaps in risks. Using these tools, regulators may better accommodate the risks of SMRs without relying on conservative measures to justify the satisfaction of regulatory requirements. This thesis also investigates how type certification of SMR designs can be used to streamline the licensing process to take advantage of their quick construction and installation times. Type certification is the process of certifying a design such that reproductions of that design are assumed to meat regulatory requirements thereby reducing the depth of analysis for subsequent risk assessments of the same reactor. In the type certification process, the assurance that SMR designs can be reproduced by the manufacturer consistently and accurately is a significant concern. The examination of the aviation industry and maritime transport industry yield effective strategies for assuring the reproducibility of SMR designs that may be implemented within Canada

    Preliminaries of orthogonal layered defence using functional and assurance controls in industrial control systems

    Get PDF
    Industrial Control Systems (ICSs) are responsible for the automation of different processes and the overall control of systems that include highly sensitive potential targets such as nuclear facilities, energy-distribution, water-supply, and mass-transit systems. Given the increased complexity and rapid evolvement of their threat landscape, and the fact that these systems form part of the Critical National infrastructure (CNI), makes them an emerging domain of conflict, terrorist attacks, and a playground for cyberexploitation. Existing layered-defence approaches are increasingly criticised for their inability to adequately protect against resourceful and persistent adversaries. It is therefore essential that emerging techniques, such as orthogonality, be combined with existing security strategies to leverage defence advantages against adaptive and often asymmetrical attack vectors. The concept of orthogonality is relatively new and unexplored in an ICS environment and consists of having assurance control as well as functional control at each layer. Our work seeks to partially articulate a framework where multiple functional and assurance controls are introduced at each layer of ICS architectural design to further enhance security while maintaining critical real-time transfer of command and control traffic

    Liberty versus safety: a design review

    Full text link
    It is our contention that when designing against terrorism, it is important to fully understand both terrorist perpetrator techniques and terrorism prevention principles and to establish the myths and realities about ‘fear of terrorism’, before catalyzing new design innovations. This paper assesses the requirement for designers to mediate issues of user liberty versus security. We assess the troublesome design tradeoffs between accommodation of users and exclusion of terrorist misuse and abuse linked to bicycle parking, using the Conjunction of Terrorism Opportunity framework. We include the case study of the Biceberg automated bike parking system in relation to the fitness for purpose versus resistance to terrorism debate

    The role of error in organizing behaviour

    Get PDF
    • …
    corecore