INSpIRA: INtegrating Security Into Risk Assessment: Doctoral Project Paper

Research output: Chapter in Book/Report/Conference proceedingConference contributionResearchpeer-review

Abstract

Today’s software and hardware technologies enable the expansion
of Cyber-Physical Systems (CPSs) into the realms of mobility (car2x,
autonomous driving), energy (power plants, smart grid) and healthcare (health monitoring), paving the way into a highly interlaced
world. However, this also dramatically broadens the threat landscape for potential attacks on CPSs. The malfunction of these CPSs could threaten human life, cause environmental damage and major fnancial loss. This drives the need for comprehensive methods that support the cross-domain design, development and implementation of safe and secure systems. In order to tackle these challenges, this paper proposes a method called INSpIRA, a method for INtegrating Security Into Risk Assessment, including a toolchain implementing the method. The envisioned method is supposed to be a holistic approach that supports the efcient crossdomain design, development, implementation and maintenance of dependable CPSs, where security and safety are a critical aspect that requires an in-depth risk assessment.
Original languageEnglish
Title of host publication 2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS)
PublisherACM/IEEE
ISBN (Electronic)978-1-4503-5715-9
ISBN (Print)978-1-5386-6172-7
DOIs
Publication statusPublished - 2018

Fingerprint

Risk assessment
Computer hardware
Power plants
Health
Cyber Physical System
Monitoring

Keywords

  • Dependability
  • Safety
  • Security
  • Risk Assessment
  • Self-Adaptive System
  • Model Based Development
  • Industrial Control Systems
  • ICS

Cite this

Dobaj, J. (2018). INSpIRA: INtegrating Security Into Risk Assessment: Doctoral Project Paper. In 2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS) ACM/IEEE. https://doi.org/10.1145/3194133.3194159

INSpIRA: INtegrating Security Into Risk Assessment : Doctoral Project Paper. / Dobaj, Jürgen.

2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS). ACM/IEEE, 2018.

Research output: Chapter in Book/Report/Conference proceedingConference contributionResearchpeer-review

Dobaj, J 2018, INSpIRA: INtegrating Security Into Risk Assessment: Doctoral Project Paper. in 2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS). ACM/IEEE. https://doi.org/10.1145/3194133.3194159
Dobaj J. INSpIRA: INtegrating Security Into Risk Assessment: Doctoral Project Paper. In 2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS). ACM/IEEE. 2018 https://doi.org/10.1145/3194133.3194159
Dobaj, Jürgen. / INSpIRA: INtegrating Security Into Risk Assessment : Doctoral Project Paper. 2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS). ACM/IEEE, 2018.
@inproceedings{6413da6f661f4bae8bac58ac9886ec30,
title = "INSpIRA: INtegrating Security Into Risk Assessment: Doctoral Project Paper",
abstract = "Today’s software and hardware technologies enable the expansionof Cyber-Physical Systems (CPSs) into the realms of mobility (car2x,autonomous driving), energy (power plants, smart grid) and healthcare (health monitoring), paving the way into a highly interlacedworld. However, this also dramatically broadens the threat landscape for potential attacks on CPSs. The malfunction of these CPSs could threaten human life, cause environmental damage and major fnancial loss. This drives the need for comprehensive methods that support the cross-domain design, development and implementation of safe and secure systems. In order to tackle these challenges, this paper proposes a method called INSpIRA, a method for INtegrating Security Into Risk Assessment, including a toolchain implementing the method. The envisioned method is supposed to be a holistic approach that supports the efcient crossdomain design, development, implementation and maintenance of dependable CPSs, where security and safety are a critical aspect that requires an in-depth risk assessment.",
keywords = "Dependability, Safety, Security, Risk Assessment, Self-Adaptive System, Model Based Development, Industrial Control Systems, ICS",
author = "J{\"u}rgen Dobaj",
year = "2018",
doi = "10.1145/3194133.3194159",
language = "English",
isbn = "978-1-5386-6172-7",
booktitle = "2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS)",
publisher = "ACM/IEEE",

}

TY - GEN

T1 - INSpIRA: INtegrating Security Into Risk Assessment

T2 - Doctoral Project Paper

AU - Dobaj, Jürgen

PY - 2018

Y1 - 2018

N2 - Today’s software and hardware technologies enable the expansionof Cyber-Physical Systems (CPSs) into the realms of mobility (car2x,autonomous driving), energy (power plants, smart grid) and healthcare (health monitoring), paving the way into a highly interlacedworld. However, this also dramatically broadens the threat landscape for potential attacks on CPSs. The malfunction of these CPSs could threaten human life, cause environmental damage and major fnancial loss. This drives the need for comprehensive methods that support the cross-domain design, development and implementation of safe and secure systems. In order to tackle these challenges, this paper proposes a method called INSpIRA, a method for INtegrating Security Into Risk Assessment, including a toolchain implementing the method. The envisioned method is supposed to be a holistic approach that supports the efcient crossdomain design, development, implementation and maintenance of dependable CPSs, where security and safety are a critical aspect that requires an in-depth risk assessment.

AB - Today’s software and hardware technologies enable the expansionof Cyber-Physical Systems (CPSs) into the realms of mobility (car2x,autonomous driving), energy (power plants, smart grid) and healthcare (health monitoring), paving the way into a highly interlacedworld. However, this also dramatically broadens the threat landscape for potential attacks on CPSs. The malfunction of these CPSs could threaten human life, cause environmental damage and major fnancial loss. This drives the need for comprehensive methods that support the cross-domain design, development and implementation of safe and secure systems. In order to tackle these challenges, this paper proposes a method called INSpIRA, a method for INtegrating Security Into Risk Assessment, including a toolchain implementing the method. The envisioned method is supposed to be a holistic approach that supports the efcient crossdomain design, development, implementation and maintenance of dependable CPSs, where security and safety are a critical aspect that requires an in-depth risk assessment.

KW - Dependability

KW - Safety

KW - Security

KW - Risk Assessment

KW - Self-Adaptive System

KW - Model Based Development

KW - Industrial Control Systems

KW - ICS

U2 - 10.1145/3194133.3194159

DO - 10.1145/3194133.3194159

M3 - Conference contribution

SN - 978-1-5386-6172-7

BT - 2018 IEEE/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS)

PB - ACM/IEEE

ER -