An Assurance Framework for Independent Co-assurance of Safety and Security

01/24/2019
by   Nikita Johnson, et al.
0

Integrated safety and security assurance for complex systems is difficult for many technical and socio-technical reasons such as mismatched processes, inadequate information, differing use of language and philosophies, etc.. Many co-assurance techniques rely on disregarding some of these challenges in order to present a unified methodology. Even with this simplification, no methodology has been widely adopted primarily because this approach is unrealistic when met with the complexity of real-world system development. This paper presents an alternate approach by providing a Safety-Security Assurance Framework (SSAF) based on a core set of assurance principles. This is done so that safety and security can be co-assured independently, as opposed to unified co-assurance which has been shown to have significant drawbacks. This also allows for separate processes and expertise from practitioners in each domain. With this structure, the focus is shifted from simplified unification to integration through exchanging the correct information at the right time using synchronisation activities.

READ FULL TEXT
research
10/11/2018

Model-Based Safety and Security Engineering

By exploiting the increasing surface attack of systems, cyber-attacks ca...
research
05/10/2023

Conflict Analysis and Resolution of Safety and Security Boundary Conditions for Industrial Control Systems

Safety and security are the two most important properties of industrial ...
research
08/06/2022

Towards Interdependent Safety Security Assessments using Bowties

We present a way to combine security and safety assessments using Bowtie...
research
08/30/2018

Inadequate Risk Analysis Might Jeopardize The Functional Safety of Modern Systems

In the early 90s, researchers began to focus on security as an important...
research
06/11/2021

Model-based Safety and Security Co-analysis: a Survey

We survey the state-of-the-art on model-based formalisms for safety and ...
research
05/30/2019

The Security Implications of Data Subject Rights

Data protection regulations give individuals rights to obtain the inform...

Please sign up or login with your details

Forgot password? Click here to reset