Talks and Poster Presentations (with Proceedings-Entry):
C. Schmittner, T. Gruber, P. Puschner, E. Schoitsch:
"Security Application of Failure Mode and Effect Analysis (FMEA)";
Talk: International Conference on Computer Safety, Reliability and Security (SAFECOMP),
Florence, Italy;
2014-09-10
- 2014-09-12; in: "Computer Safety, Reliability and Security",
Lecture Notes in Computer Science / Springer,
Volume 8666
(2014),
ISBN: 978-3-319-10506-2;
310
- 325.
English abstract:
Increasingly complex systems lead to an interweaving of security, safety, availability and reliability concerns. Most dependability analysis techniques do not include security aspects. In order to include security, a holistic risk model for systems is needed. In our novel approach, the basic failure cause, failure mode and failure effect model known from FMEA is used as a template for a vulnerability cause-effect chain, and an FMEA analysis technique extended with security is presented. This represents a unified model for safety and security cause-effect analysis. As an example the technique is then applied to a distributed industrial measurement system.
Keywords:
safety analysis, security analysis, combined analysis, FMEA, vulnerabilities, cause effect chain for security
Created from the Publication Database of the Vienna University of Technology.