ABSTRACT
Currently, the automotive industry is in a phase of reorientation and reorganization regarding security risks and hazards of in-car electronic systems. So far, security risks in the electronics development for automobiles were largely confined to configuration protection, e.g. preventing the manipulation of speedometers or disabling of power limitations. Now, the introduction of wireless information and communication technologies in vehicles leads to new challenges for the development and protection of the entire vehicle electronics. In this contribution a comparison of safety and security standards, on the example of ISO 26262 and ISO 15408, is presented and both standards are discussed regarding their industrial applicability and compatibility. A coordination scheme for security and safety engineering processes is proposed.
- C. Robinson-Mallett, Automotive Security: From Security to Safety Issues through the Introduction of In-Car Internet Connectivity, Invited Talk on 8th Cyber Security and Information Intelligence Research Workshop, 01/2013, Oak Ridge National Research Laboratory, TN, USAGoogle Scholar
- International Organization of Standardization (ISO), ISO 26262 Road Vehicles -- Functional Safety, www.iso.orgGoogle Scholar
- International Organization of Standardization (ISO), ISO 15408 Common Criteria for Information Technology Security Evaluation, www.iso.orgGoogle Scholar
- D. Nicol, W. Sanders, K. Trivedi, Model-Based Evaluation: From Dependability to Security, IEEE Transactions on Dependable and Secure Computing, Vol. 1 No. 1, 2004 Google ScholarDigital Library
Index Terms
- Coordinating security and safety engineering processes in automotive electronics development
Recommendations
Assurance of automotive safety - a safety case approach
SAFECOMP'10: Proceedings of the 29th international conference on Computer safety, reliability, and securityA safety case should provide a clear, comprehensible and defensible argument, supported by evidence, that a system is acceptably safe to operate in a particular environment. This approach is not new. For example, in the nuclear industry, safety cases ...
Integrated Automotive SPICE and safety assessments
Part 1: Special Issue on SPI Experiences and Innovation for Global Software DevelopmentIn 2005 Automotive SPICE (based on ISO 15504) has been published (see ) and used in major automotive firms world wide. In parallel the topic ‘Functional Safety’ became important due to changes in liability law and the development of IEC 61508 as an ...
Assisted Assignment of Automotive Safety Requirements
ISO 26262, a functional-safety standard, uses Automotive Safety Integrity Levels (ASILs) to assign safety requirements to automotive-system elements. System designers initially assign ASILs to system-level hazards and then allocate them to elements of ...
Comments