A Study of the Interplay Between Safety and Security Using Model-Implemented Fault Injection

Sangchoolie, Behrooz; Folkesson, Peter; Vinter, Jonny

Enkel sökning

Avancerad sökning

Statistik

Ändra sökning

Permanent länk

https://urn.kb.se/resolve?urn=urn:nbn:se:ri:diva-36477

Direktlänk

https://ri.diva-portal.org/smash/record.jsf?pid=diva2:1265112

Referera

Referensformat

apa
ieee
modern-language-association-8th-edition
vancouver
Annat format

Fler format

Språk

de-DE
en-GB
en-US
fi-FI
nn-NO
nn-NB
sv-SE
Annat språk

Fler språk

Utmatningsformat

html
text
asciidoc
rtf

A Study of the Interplay Between Safety and Security Using Model-Implemented Fault Injection

Sangchoolie, Behrooz

RISE - Research Institutes of Sweden, Säkerhet och transport, Elektronik.ORCID-id: 0000-0001-9536-4269

Folkesson, Peter

RISE - Research Institutes of Sweden, Säkerhet och transport, Elektronik.ORCID-id: 0000-0001-5224-9412

Vinter, Jonny

ORCID-id: 0000-0002-6191-6253

2018 (Engelska)Konferensbidrag, Publicerat paper (Refereegranskat)

Abstract [en]

The combination of high mobility and wireless communication in many safety-critical systems have increased their exposure to malicious security threats. Consequently, many works in the past have proposed solutions to ensure safety and security of these systems. However, not much attention has been given to the interplay between these two groups of nonfunctional requirements. This is a concern as safety solutions may negatively impact system security and vice versa. This paper addresses the interplay between safety and security by proposing an attack injection framework, based on model-implemented fault injection, suitable for model-based design. The framework enables us to study and evaluate the impact of cybersecurity attacks on system safety early in the development process. To this end, we have implemented six attack injection models and conducted experiments on Simulink models of a CAN bus and a brake-by-wire controller. The results show that the security attacks modeled could successfully impact the system safety by violating our defined safety requirements.

Ort, förlag, år, upplaga, sidor

2018. s. 41-48

Nyckelord [en]

fault injection, attack injection, security, safety, cybersecurity attack, model-based design

Nationell ämneskategori

Data- och informationsvetenskap

Identifikatorer

URN: urn:nbn:se:ri:diva-36477DOI: 10.1109/EDCC.2018.00018Scopus ID: 2-s2.0-85053862860ISBN: 9781538680605 (tryckt)OAI: oai:DiVA.org:ri-36477DiVA, id: diva2:1265112

Konferens

14th European Dependable Computing Conference, EDCC 2018; Iasi; Romania; 10 September 2018 through 14 September 2018

Forskningsfinansiär

VinnovaTillgänglig från: 2018-11-22 Skapad: 2018-11-22 Senast uppdaterad: 2025-09-23Bibliografiskt granskad

Open Access i DiVA

fulltext(370 kB)

784 nedladdningar

Filinformation

Filnamn FULLTEXT02.pdfFilstorlek 370 kBChecksumma SHA-512

6cc6f927e7808c59ad8d5a69792875a1d8571a4e654e94c61b6fdcc1386ab2921cfd266e36a24689cc00d443fcae84f3208022a0a1dfb93a7ca1e49468149411

Typ fulltextMimetyp application/pdf

Övriga länkar

Förlagets fulltextScopus

Person

Sangchoolie, Behrooz Folkesson, Peter Vinter, Jonny

Sök vidare i DiVA

Totalt: 785 nedladdningar

Antalet nedladdningar är summan av nedladdningar för alla fulltexter. Det kan inkludera t.ex tidigare versioner som nu inte längre är tillgängliga.

doi

isbn

urn-nbn

Totalt: 258 träffar

Referera ExporteraLänk till posten