The model and implementation of Safety Case Cores

Netkachova, K. (2012). The model and implementation of Safety Case Cores. Information & Security, 28(2), pp. 286-295.

[img]
Preview
Text - Published Version
Download (265kB) | Preview

Abstract

Safety plays a crucial role in the modern society. Assuring safe operation is one of the vitally important tasks faced by system developers and experts. The concept of Safety Case has been evolving for over 20 years. World famous scientists such as Peter Bishop, Tim Kelly, J Górski and others made a great impact on the concept and its implementation.The concept has evolved, grown and nowadays become a common and generally accepted practice. However, future research is still needed to develop the approach further on and make it even more useful, accurate, efficient, and of course, automated.

In this paper we introduce a concept of Safety Case Core, which can be considered one of the Safety Case methods. We also discuss an approach to assessing security characteristics of OTS components. In order to help security experts in software assessment, vulnerability tracking and management processes, a special Safety Case core for assessing OTS components was developed and implemented as a plug-in for ASCE software tool and as a web service for OTS components assessment.

The paper is structured in the following way: Section 1 provides a definition of safety case core, describes it structure, model and the main concept; Section 2 presents a core for assessing OTS components and gives some implementation details; Sections 3 and 4 describe the implementation of the core as an ASCE plug-in and as a web service for assessing OTS components and tracking vulnerabilities. The paper ends with concluding remarks, future directions and extensions to this work.

Item Type: Article
Additional Information: The published paper can be found here: http://procon.bg/article/model-and-implementation-safety-case-cores
Uncontrolled Keywords: Safety case core; security; vulnerability; OTS component assessment; ASCE plug-in; web service
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Divisions: School of Informatics > Department of Computing
URI: http://openaccess.city.ac.uk/id/eprint/4809

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year

View more statistics