153,464 research outputs found
DPN -- Dependability Priority Numbers
This paper proposes a novel model-based approach to combine the quantitative
dependability (safety, reliability, availability, maintainability and IT
security) analysis and trade-off analysis. The proposed approach is called DPN
(Dependability Priority Numbers) and allows the comparison of different actual
dependability characteristics of a systems with its target values and evaluates
them regarding trade-off analysis criteria. Therefore, the target values of
system dependability characteristics are taken as requirements, while the
actual value of a specific system design are provided by quantitative and
qualitative dependability analysis (FHA, FMEA, FMEDA, of CFT-based FTA). The
DPN approach evaluates the fulfillment of individual target requirements and
perform trade-offs between analysis objectives. We present the workflow and
meta-model of the DPN approach, and illustrate our approach using a case study
on a brake warning contact system. Hence, we demonstrate how the model-based
DPNs improve system dependability by selecting the project crucial dependable
design alternatives or measures
Towards the Model-Driven Engineering of Secure yet Safe Embedded Systems
We introduce SysML-Sec, a SysML-based Model-Driven Engineering environment
aimed at fostering the collaboration between system designers and security
experts at all methodological stages of the development of an embedded system.
A central issue in the design of an embedded system is the definition of the
hardware/software partitioning of the architecture of the system, which should
take place as early as possible. SysML-Sec aims to extend the relevance of this
analysis through the integration of security requirements and threats. In
particular, we propose an agile methodology whose aim is to assess early on the
impact of the security requirements and of the security mechanisms designed to
satisfy them over the safety of the system. Security concerns are captured in a
component-centric manner through existing SysML diagrams with only minimal
extensions. After the requirements captured are derived into security and
cryptographic mechanisms, security properties can be formally verified over
this design. To perform the latter, model transformation techniques are
implemented in the SysML-Sec toolchain in order to derive a ProVerif
specification from the SysML models. An automotive firmware flashing procedure
serves as a guiding example throughout our presentation.Comment: In Proceedings GraMSec 2014, arXiv:1404.163
Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications
Over the last years, we have seen several security incidents that compromised
system safety, of which some caused physical harm to people. Meanwhile, various
risk assessment methods have been developed that integrate safety and security,
and these could help to address the corresponding threats by implementing
suitable risk treatment plans. However, an overarching overview of these
methods, systematizing the characteristics of such methods, is missing. In this
paper, we conduct a systematic literature review, and identify 7 integrated
safety and security risk assessment methods. We analyze these methods based on
5 different criteria, and identify key characteristics and applications. A key
outcome is the distinction between sequential and non-sequential integration of
safety and security, related to the order in which safety and security risks
are assessed. This study provides a basis for developing more effective
integrated safety and security risk assessment methods in the future
Safety and Security Analysis of AEB for L4 Autonomous Vehicle Using STPA
Autonomous vehicles (AVs) are coming to our streets. Due to the presence of highly complex software systems in AVs, there is a need for a new hazard analysis technique to meet stringent safety standards. System Theoretic Process Analysis (STPA), based on Systems Theoretic Accident Modeling and Processes (STAMP), is a powerful tool that can identify, define, analyze and mitigate hazards from the earliest conceptual stage deployment to the operation of a system. Applying STPA to autonomous vehicles demonstrates STPA\u27s applicability to preliminary hazard analysis, alternative available, developmental tests, organizational design, and functional design of each unique safety operation.
This paper describes the STPA process used to generate system design requirements for an Autonomous Emergency Braking (AEB) system using a top-down analysis approach to system safety. The paper makes the following contributions to practicing STPA for safety and security:
1) It describes the incorporation of safety and security analysis in one process and discusses the benefits of this;
2) It provides an improved, structural approach for scenario analysis, concentrating on safety and security;
3) It demonstrates the utility of STPA for gap analysis of existing designs in the automotive domain;
4) It provides lessons learned throughout the process of applying STPA and STPA-Sec
Process of designing robust, dependable, safe and secure software for medical devices: Point of care testing device as a case study
This article has been made available through the Brunel Open Access Publishing Fund.Copyright © 2013 Sivanesan Tulasidas et al. This paper presents a holistic methodology for the design of medical device software, which encompasses of a new way of eliciting requirements, system design process, security design guideline, cloud architecture design, combinatorial testing process and agile project management. The paper uses point of care diagnostics as a case study where the software and hardware must be robust, reliable to provide accurate diagnosis of diseases. As software and software intensive systems are becoming increasingly complex, the impact of failures can lead to significant property damage, or damage to the environment. Within the medical diagnostic device software domain such failures can result in misdiagnosis leading to clinical complications and in some cases death. Software faults can arise due to the interaction among the software, the hardware, third party software and the operating environment. Unanticipated environmental changes and latent coding errors lead to operation faults despite of the fact that usually a significant effort has been expended in the design, verification and validation of the software system. It is becoming increasingly more apparent that one needs to adopt different approaches, which will guarantee that a complex software system meets all safety, security, and reliability requirements, in addition to complying with standards such as IEC 62304. There are many initiatives taken to develop safety and security critical systems, at different development phases and in different contexts, ranging from infrastructure design to device design. Different approaches are implemented to design error free software for safety critical systems. By adopting the strategies and processes presented in this paper one can overcome the challenges in developing error free software for medical devices (or safety critical systems).Brunel Open Access Publishing Fund
Indicators and methods for assessing the quality of logistic activity processes
Purpose: This article is aimed at identifying and evaluating the quality and safety indicators of processes in the logistics system and solving the problems of product control in the goods’ distribution process. Design/Methodology/Approach: In order to assess the risks and quality of control methods in the goods’ distribution processes, studies were carried out in the process of grain supply, on which the risk assessment was tested using the fault tree using a qualitative approach with a deductive logic, which allowed to identify events at the lower levels of the system. To evaluate the results when comparing various methods of monitoring the characteristics of products in the product distribution process certain statistical tools were used. The evaluation with comparative tests is required in order to determine the way of measuring products in the goods distribution logistics system. The study uses the methods of formalization, analysis, measurement, experimental and comparison. Findings: The considered risk assessment method and the given example allow us to recommend its use for the product distribution processes for various purposes. A technique is proposed for comparing various control methods based on statistical tools that can be recommended for various goods’ distribution operations. Practical implications: The results of the study can be applied in practice to improve the quality of goods’ distribution processes and reduce risks in the various supply chains. Originality/value: The main contribution of this study is to shift the emphasis on the assessment of processes in goods’ distribution to the positions of a risk-based approach and the use of various statistical tools in logistics’ activities.peer-reviewe
Development and Validation of Functional Model of a Cruise Control System
Modern automobiles can be considered as a collection of many subsystems
working with each other to realize safe transportation of the occupants.
Innovative technologies that make transportation easier are increasingly
incorporated into the automobile in the form of functionalities. These new
functionalities in turn increase the complexity of the system framework present
and traceability is lost or becomes very tricky in the process. This hugely
impacts the development phase of an automobile, in which, the safety and
reliability of the automobile design should be ensured. Hence, there is a need
to ensure operational safety of the vehicles while adding new functionalities
to the vehicle. To address this issue, functional models of such systems are
created and analysed. The main purpose of developing a functional model is to
improve the traceability and reusability of a system which reduces development
time and cost. Operational safety of the system is ensured by analysing the
system with respect to random and systematic failures and including safety
mechanism to prevent such failures. This paper discusses the development and
validation of a functional model of a conventional cruise control system in a
passenger vehicle based on the ISO 26262 Road Vehicles - Functional Safety
standard. A methodology for creating functional architectures and an
architecture of a cruise control system developed using the methodology are
presented.Comment: In Proceedings FESCA 2016, arXiv:1603.0837
- …