2017년 3월 8일 수요일

Attack Tree on Safety Function




출처: Goal-Oriented Co-engineering of Security and Safety Requirements in Cyber-Physical Systems by Philippe Massonet


Goal-Oriented RE(Requirement Engineering) for Safety and Security CPS

Requirements Specification Qualities 

  • Completeness: descriptions of all required services and constraints should be included.
    • « Requirements ∧ Assumptions ∧ Domain properties => Objectives » 



  • Consistency: there should be no conflicts or contradictions in the descriptions. 
    • « Requirements ∧ Assumtions  ∧ Domain properties ≠ false » (satisfiable) 
  • … 


Goal-Oriented RE for Safety and Security CPS 


Combining Safety and Security 


출처: Goal-Oriented Co-engineering of Security and Safety Requirements in Cyber-Physical Systems by Philippe Massonet

Current Approaches to link Safety and Security Engineering

4 potential approaches to link safety and security (cfr ITEA Merge project)


Comparison of Safety and Security Engineering 

Requirements Engineering 

  • Definition: The process of eliciting, analyzing, documenting and validating the services required of a system and the constraints under which it will operate and be developed 
  • Requirements Specification
    • Natural language Requirements
      • Ambiguity: several interpretations of requirements
      • Confusion: functions, constraints, goals and design may be mixed
      • Amalgamation: several requirements expressed together 
    • Model based approach 

Functional and non-functional Goals

출처: Goal-Oriented Co-engineering of Security and Safety Requirements in Cyber-Physical Systems by Philippe Massonet