City Research Online

Security-Informed Safety Case Approach to Analysing MILS Systems

Netkachova, K., Müller, K., Paulitsch, M. & Bloomfield, R. E. (2015). Security-Informed Safety Case Approach to Analysing MILS Systems. Paper presented at the International Workshop on MILS: Architecture and Assurance for Secure Systems, 19-21 January 2015, Amsterdam, The Netherlands.

Abstract

Safety cases are the development foundation for safety-critical systems and are often quite complex to understand depending on the size of the system and operational conditions. The recent advent of security aspects complicates the issues further. This paper describes an approach to analysing safety and security in a structured way and creating security-informed safety cases that provide justification of safety taking into particular consideration the impact of security. The paper includes an overview of the structured assurance case concept, a security-informed safety methodology and a layered approach to constructing cases. The approach is applied to a Security Gateway that is used to control data flow between security domains in a separation kernel based operating system in avionics environment. We show that a clear and structured way of presenting a safety case combining safety and security alleviates understanding important interactions taking into account the impact and, hence, increases safety.

Publication Type: Conference or Workshop Item (Other)
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Departments: School of Science & Technology > Computer Science
[thumbnail of CaseApproachToMILS.pdf]
Preview
Text - Submitted Version
Download (348kB) | Preview

Export

Add to AnyAdd to TwitterAdd to FacebookAdd to LinkedinAdd to PinterestAdd to Email

Downloads

Downloads per month over past year

View more statistics

Actions (login required)

Admin Login Admin Login