Proposal for simplified implementation of risk assessment method for measuring instruments

• Autorzy: Koval M. , Grasso Toro F. , Esche M.

Identyfikatory

DOI

10.15439/2018F377

• Konferencja: Federated Conference on Computer Science and Information Systems (09-12.09.2018 ; Poznań, Poland)
• Języki publikacji: EN

Abstrakty

EN

Legal Metrology is the economic sector where measuring instruments subject to legal control (taximeters, electricity meters, etc.) are used. In this field, constant growth of Measuring Instruments using ICT technology is evident. For this reason, higher security requirements need to be imposed as stated by the relevant EU directives. Risk assessment is an additional security requirement for software, based on current regulations Directive 2014/31/EU and Directive 2014/32/EU (MID) that state: "The documentation shall make it possible to assess the instrument's conformity to the relevant requirements and shall include an adequate analysis and assessment of the risk(s).'' Several methods for risk assessment of software exist, but based on this statement above, it is necessary to find appropriate solutions for the realization of risk assessment for metrological software, on the base of its technical documentation. The Welmec Working Group 7 has developed a Risk Assessment method, based on international standards. But in this article a simpler method is proposed, aiming for advantages such as universality, simplicity and transparency, in contrast with already existing methods. The combination of these advantages in the proposed method will allow its simple understanding and implementation for all active stakeholders (both the Notified Bodies and the manufacturers).

Słowa kluczowe

EN

risk assessment methods; technical parameters; metrological software

PL

metody oceny ryzyka; parametry techniczne; oprogramowanie metrologiczne

• Wydawca: Polskie Towarzystwo Informatyczne
• Czasopismo: Annals of Computer Science and Information Systems
• Rocznik: 2018
• Tom: Vol. 16
• Strony: 43--47
• Opis fizyczny: Bibliogr. 5 poz., tab., wykr.

Twórcy

autor

Koval M.

• Czech Metrology Institute, Brno, Czech Republic

autor

Grasso Toro F.

• Physikalisch-Technische Bundesanstalt, Berlin, Germany

autor

Esche M.

• Physikalisch-Technische Bundesanstalt, Berlin, Germany

Bibliografia

• [1] Directive 2014/32/EU of the European Parliament and of the Council of 26 February 2014 on the harmonization of the laws of the Member States relating to the making available on the market of measuring instruments, / European Union, Council of the European Union // European Parliament, Directive, February 2014.
• [2] ISO/IEC 27005:2011(e) Information technology - Security techniques - Information security risk management, International Organization for Standardization // Geneva, CH, Standard, June 2011.
• [3] WELMEC 7.2 Software Guide, / European cooperation in legal metrology, // WELMEC Secretariat, Delft, Standard, March 2012.
• [4] M. Esche and F. Thiel, "Software risk assessment for measuring instruments in legal metrology," 2015 Federated Conference on Computer Science and Information Systems (FedCSIS), Lodz, 2015, pp. 1113-1123. DOI: 10.15439/2015F127.
• [5] Ch.-B. do Prado, D.-R. Boccardo, R.-C.-S Machado, L.-F.-R. da Costa Carmo, T. -M. do Nascimento, L.-M.-S. Bento, R.-O. Costa, C.-G de Castro, S.-M. Camara, L. Pirmez and R. Oliveira / Software Analysis and Protection for Smart Metering in // NCSLI Measure: The Journal of Measurement Science. - 2014.-vol.9.-No.3 – p. 22-29. DOI: 10.1080/19315775.2014.11721691.

Uwagi

1. Track 2: International Conference on Innovative Network Systems and Applications

2. Technical Session: 2nd International Conference on Security, Privacy, and Trust