Skip to main content
main-content

Tipp

Weitere Kapitel dieses Buchs durch Wischen aufrufen

2018 | OriginalPaper | Buchkapitel

Deriving and Formalising Safety and Security Requirements for Control Systems

verfasst von : Elena Troubitsyna, Inna Vistbakka

Erschienen in: Computer Safety, Reliability, and Security

Verlag: Springer International Publishing

share
TEILEN

Abstract

Safety-critical control systems become increasingly open and interconnected. However, there is still a lack of the techniques that enable an integrated analysis of safety and security requirements. In this paper, we propose an approach that allows the designers to derive and formalise safety and security requirements in a structured systematic way. To elicit both types of the requirements, we adapt and integrate traditional safety and security analysis techniques. To formally specify and verify them, we rely on Event-B framework. The framework allows us to develop a complex specification of system behaviour in presence of both accidental faults and security attacks and analyse mutual interdependencies between safety and security requirements.
Literatur
1.
Zurück zum Zitat Abrial, J.R.: Modeling in Event-B. Cambridge University Press, New York (2010) CrossRef Abrial, J.R.: Modeling in Event-B. Cambridge University Press, New York (2010) CrossRef
2.
Zurück zum Zitat Brunel, J., Rioux, L., Paul, S., Faucogney, A., Vallée, F.: Formal safety and security assessment of an avionic architecture with alloy. In: ESSS 2014, pp. 8–19 (2014) Brunel, J., Rioux, L., Paul, S., Faucogney, A., Vallée, F.: Formal safety and security assessment of an avionic architecture with alloy. In: ESSS 2014, pp. 8–19 (2014)
3.
Zurück zum Zitat Bruza, P., van der Weide, T.P.: The Semantics of Data Flow Diagrams. Technical report 89-16, University of Nijmegen, The Netherlands (1989) Bruza, P., van der Weide, T.P.: The Semantics of Data Flow Diagrams. Technical report 89-16, University of Nijmegen, The Netherlands (1989)
6.
Zurück zum Zitat Fovino, I.N., Masera, M., Cian, A.D.: Integrating cyber attacks within fault trees. Rel. Eng. Sys. Saf. 94(9), 1394–1402 (2009) CrossRef Fovino, I.N., Masera, M., Cian, A.D.: Integrating cyber attacks within fault trees. Rel. Eng. Sys. Saf. 94(9), 1394–1402 (2009) CrossRef
7.
Zurück zum Zitat Iliasov, A., Romanovsky, A., Laibinis, L., Troubitsyna, E., Latvala, T.: Augmenting Event-B modelling with real-time verification. In: Proceedings of the FormSERA 2012, pp. 51–57. IEEE (2012) Iliasov, A., Romanovsky, A., Laibinis, L., Troubitsyna, E., Latvala, T.: Augmenting Event-B modelling with real-time verification. In: Proceedings of the FormSERA 2012, pp. 51–57. IEEE (2012)
10.
Zurück zum Zitat Leveson, N.G.: Safeware: System Safety and Computers. Addison-Wesley, Boston (1995) Leveson, N.G.: Safeware: System Safety and Computers. Addison-Wesley, Boston (1995)
11.
Zurück zum Zitat Lopatkin, I., Iliasov, A., Romanovsky, A., Prokhorova, Y., Troubitsyna, E.: Patterns for Representing FMEA in formal specification of control systems. In: HASE 2011, Boca Raton, FL, USA, pp. 146–151. IEEE Computer Society (2011) Lopatkin, I., Iliasov, A., Romanovsky, A., Prokhorova, Y., Troubitsyna, E.: Patterns for Representing FMEA in formal specification of control systems. In: HASE 2011, Boca Raton, FL, USA, pp. 146–151. IEEE Computer Society (2011)
12.
Zurück zum Zitat Ministry of Defence: Interim Defence Standard 00–58/1: Hazop Studies on Systems Containing Programmable Electronics. In: Directorate of Standardization (1994) Ministry of Defence: Interim Defence Standard 00–58/1: Hazop Studies on Systems Containing Programmable Electronics. In: Directorate of Standardization (1994)
13.
Zurück zum Zitat Prokhorova, Y., Laibinis, L., Troubitsyna, E.: Facilitating construction of safety cases from formal models in Event-B. Inf. Softw. Technol. 60, 51–76 (2015) CrossRef Prokhorova, Y., Laibinis, L., Troubitsyna, E.: Facilitating construction of safety cases from formal models in Event-B. Inf. Softw. Technol. 60, 51–76 (2015) CrossRef
20.
Zurück zum Zitat Tarasyuk, A., Troubitsyna, E., Laibinis, L.: Integrating stochastic reasoning into event-B development. Form. Asp. Comput. 27(1), 53–77 (2015) MathSciNetCrossRef Tarasyuk, A., Troubitsyna, E., Laibinis, L.: Integrating stochastic reasoning into event-B development. Form. Asp. Comput. 27(1), 53–77 (2015) MathSciNetCrossRef
21.
Zurück zum Zitat Troubitsyna, E.: Stepwise Development of Dependable Systems. Technical report (2000) Troubitsyna, E.: Stepwise Development of Dependable Systems. Technical report (2000)
25.
Zurück zum Zitat Young, W., Leveson, N.G.: An integrated approach to safety and security based on systems theory. Commun. ACM 57(2), 31–35 (2014) CrossRef Young, W., Leveson, N.G.: An integrated approach to safety and security based on systems theory. Commun. ACM 57(2), 31–35 (2014) CrossRef
Metadaten
Titel
Deriving and Formalising Safety and Security Requirements for Control Systems
verfasst von
Elena Troubitsyna
Inna Vistbakka
Copyright-Jahr
2018
DOI
https://doi.org/10.1007/978-3-319-99130-6_8

Premium Partner