Christoph Schmittner | AIT Austrian Institute of Technology GmbH (original) (raw)
Related Authors
AIT Austrian Institute of Technology GmbH
Uploads
Papers by Christoph Schmittner
The increasing integration of computational components and physical systems creates cyber-physica... more The increasing integration of computational components and
physical systems creates cyber-physical system, which provide
new capabilities and possibilities for humans to control
and interact with physical machines. However, the correlation
of events in cyberspace and physical world also poses
new safety and security challenges. This calls for holistic
approaches to safety and security analysis for the identi -
cation of safety failures and security threats and a better
understanding of their interplay. This paper presents the
application of two promising methods, i.e. Failure Mode,
Vulnerabilities and E ects Analysis (FMVEA) and Combined
Harm Assessment of Safety and Security for Information Systems (CHASSIS), to a case study of safety and
security co-analysis of cyber-physical systems in the automotive
domain. We present the comparison, discuss their
applicabilities, and identify future research needs.
Safety and security are two important aspects in the analysis of cyber-physical systems (CPSs). I... more Safety and security are two important aspects in the analysis of cyber-physical systems (CPSs). In this short paper, we apply a new safety and security analysis method to intelligent and cooperative vehicles, in order to examine attack possibilities and failure scenarios. The method is based on the FMEA technique for safety analysis, with extensions to cover information security. We examine the feasibility and efficiency of the method, and determine the next steps for developing the
combined analysis method.
Increasingly complex systems lead to an interweaving of security, safety, availability and reliab... more Increasingly complex systems lead to an interweaving of security, safety, availability and reliability concerns. Most dependability analysis techniques do not include security aspects. In order to include security, a holistic risk model for systems is needed. In our novel approach, the basic failure cause, failure mode and failure effect model known from FMEA is used as a template for a vulnerability cause-effect chain, and an FMEA analysis technique extended with security is presented. This represents a unified model for safety and security cause-effect analysis. As an example the technique is then applied to a distributed industrial measurement system.
Connected, automated and intelligent vehicles give rise to new safety and security challenges. Th... more Connected, automated and intelligent vehicles give rise to new safety and security challenges. These challenges need to be considered in automotive standards. We describe the challenges and analyze the state of the art of related automotive standards. We identify the gaps and propose possible actions.
The increasing integration of computational components and physical systems creates cyber-physica... more The increasing integration of computational components and
physical systems creates cyber-physical system, which provide
new capabilities and possibilities for humans to control
and interact with physical machines. However, the correlation
of events in cyberspace and physical world also poses
new safety and security challenges. This calls for holistic
approaches to safety and security analysis for the identi -
cation of safety failures and security threats and a better
understanding of their interplay. This paper presents the
application of two promising methods, i.e. Failure Mode,
Vulnerabilities and E ects Analysis (FMVEA) and Combined
Harm Assessment of Safety and Security for Information Systems (CHASSIS), to a case study of safety and
security co-analysis of cyber-physical systems in the automotive
domain. We present the comparison, discuss their
applicabilities, and identify future research needs.
Safety and security are two important aspects in the analysis of cyber-physical systems (CPSs). I... more Safety and security are two important aspects in the analysis of cyber-physical systems (CPSs). In this short paper, we apply a new safety and security analysis method to intelligent and cooperative vehicles, in order to examine attack possibilities and failure scenarios. The method is based on the FMEA technique for safety analysis, with extensions to cover information security. We examine the feasibility and efficiency of the method, and determine the next steps for developing the
combined analysis method.
Increasingly complex systems lead to an interweaving of security, safety, availability and reliab... more Increasingly complex systems lead to an interweaving of security, safety, availability and reliability concerns. Most dependability analysis techniques do not include security aspects. In order to include security, a holistic risk model for systems is needed. In our novel approach, the basic failure cause, failure mode and failure effect model known from FMEA is used as a template for a vulnerability cause-effect chain, and an FMEA analysis technique extended with security is presented. This represents a unified model for safety and security cause-effect analysis. As an example the technique is then applied to a distributed industrial measurement system.
Connected, automated and intelligent vehicles give rise to new safety and security challenges. Th... more Connected, automated and intelligent vehicles give rise to new safety and security challenges. These challenges need to be considered in automotive standards. We describe the challenges and analyze the state of the art of related automotive standards. We identify the gaps and propose possible actions.