City Research Online - Using an assurance case framework to develop security strategy and policies

Using an assurance case framework to develop security strategy and policies

Bloomfield, R. E., Bishop, P. G., Butler, E. & Netkachova, K. (2017). Using an assurance case framework to develop security strategy and policies. Lecture Notes in Computer Science, 10489 , pp. 27-38. doi: 10.1007/978-3-319-66284-8_3

Abstract

Assurance cases have been developed to reason and communicate about the trustworthiness of systems. Recently we have also been using them to support the development of policy and to assess the impact of security issues on safety regulation. In the example we present in this paper, we worked with a safety regulator (anonymised as A Regulatory Organisation (ARO) in this paper) to investigate the impact of cyber-security on safety regulation.

Publication Type:	Article
Additional Information:	The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-319-66284-8_3
Publisher Keywords:	Security-Informed Safety, Assurance Cases, Regulation, Risk Assessment
Departments:	School of Science & Technology > Computer Science
SWORD Depositor:	Symplectic Administrator

[thumbnail of adelard_assure_CAE_policy2017.pdf]

Preview

Text - Accepted Version
Download (693kB) | Preview

Export

Downloads

Downloads per month over past year

View more statistics

Metadata

Altmetric

CORE (COnnecting REpositories)

Actions (login required)

Admin Login

Creators:	Bloomfield, R. E. Bishop, P. G. Butler, E. Netkachova, K.
Status:	Published
Refereed:	Yes
Journal or Publication Title:	Lecture Notes in Computer Science
Publisher:	Springer International Publishing
ISBN:	9783319662831
ISSN:	0302-9743
e-ISSN:	1611-3349
URI:	https://openaccess.city.ac.uk/id/eprint/18331
Date available in CRO:	06 Oct 2017 13:10
Date deposited:	6 October 2017
Dates:	Date Event 27 September 2017 Published 27 September 2017 Published Online