Current challenges and methodological issues of functional safety and security management in hazardous technical systems

• Autorzy: Kosmowski K. T.
• Języki publikacji: EN

Abstrakty

EN

The aim of this article is to identify problems of the risk assessment of the electric / electronic / programmable electronic (E/E/PE) systems concentrating on the functional safety and security aspects. These aspects should be considered in an integrated way in the system life cycle. The role of functional safety solutions is effective reducing the risk from unacceptable level. The risk is defined as a combination of the probability of occurrence of harm and the severity of that harm. Security is concerned with the protection of assets including the E/E/PE systems or safety instrumented systems (SISs) from potential threats including cyber attacks. This article deals with current challenges and methodological issues of integrating the functional safety and security aspects of the programmable systems’ operation for the control and protection of hazardous industrial systems.

Słowa kluczowe

EN

functional safety; safety integrity level; SIL; information security; evaluation assurance leve; EAL

• Wydawca: Polskie Towarzystwo Bezpieczeństwa i Niezawodności
• Czasopismo: Journal of Polish Safety and Reliability Association
• Rocznik: 2012
• Tom: Vol. 3, No. 1
• Strony: 39--52
• Opis fizyczny: Bibliogr. 23 poz., rys., tab.

Twórcy

autor

Kosmowski K. T.

• Gdańsk University of Technology, Gdańsk, Poland

Bibliografia

• [1] ARC (2011). White Paper. Risk Drives Industrial Control System Cyber Security Investment. arcweb.com.
• [2] Barnert, T., Kosmowski, K.T. & Śliwinski, M. (2008). Security aspects in verification of the safety integrity level of distributed control and protection systems. Journal of KONBIN. Air Force Institute of Technology, Warsaw.
• [3] Barnert, T., Kosmowski, K.T. & Sliwiński, M. (2009). A knowledge-based approach for functional safety management. Taylor & Francis Group, European Safety & Reliability Conference ESREL, Prague.
• [4] Barnert, T., Kosmowski, K.T. & Śliwiński, M. (2010). Integrated functional safety and security analysis of process control and protection systems with regard to uncertainty issues. PSAM, Seattle.
• [5] Barnert, T., Kosmowski, K.T. & Śliwiński, M. (2010). A method for including the security aspects in the functional safety analysis of distributed control and protection systems. ESREL, Rhodes, Greece.
• [6] Białas, A. (2008). Semiformal Common Criteria Compliant IT Security Development Framework. Studia Informatica, Silesian University of Technology Press, Gliwice.
• [7] Gruhn, P. & Cheddie, H. (2006). Instrumented Systems: Design, Analysis and Justification. ISA – The Instrumentation, Systems and Automation Society.
• [8] Guidance (2009) on the Treatment of Uncertainties Associated with PRAs in RiskInformed Decision Making, Office of Nuclear Regulatory Research, NUREG-1855, Vol. 1, US NRC.
• [9] IEC 61508 (2010). Functional Safety of Electrical/ Electronic/ Programmable Electronic Safety-Related Systems, Parts 1-7. International Electrotechnical Commission. Geneva.
• [10] IEC 61511 (2003). Functional safety: Safety Instrumented Systems for the Process Industry Sector. Parts 1-3. International Electrotechnical Commission, Geneva.
• [11] ISO/IEC 15408 (1999). Information Technology. Security Techniques. Evaluation Criteria for IT security.
• [12] ISO/IEC (2005). 27001. Information technology. Security techniques. Information security management systems. Requirements.
• [13] Kosmowski, K.T. (2004). Modelling and uncertainty in system analysis for safety assessment. Proceedings of the International Conference on Probabilistic Safety Assessment and Management, PSAM 7 - ESREL ’04, Berlin, Springer.
• [14] Kosmowski, K.T. (2006). Functional Safety Concept for Hazardous System and New Challenges. Journal of Loss Prevention in the Process Industries 19(1), pp. 298-305.
• [15] Kosmowski, K.T., Sliwinski, M. & Barnert, T. (2006). Functional safety and security assessment of the control and protection systems. Taylor & Francis Group, European Safety & Reliability Conference, ESREL 2006, Estoril. London.
• [16] Kosmowski, K.T. (Ed.) (2007). Functional Safety Management in Critical Systems. Gdansk University of Technology. Wydawnictwo Fundacji Rozwoju Uniwersytetu Gdańskiego.
• [17] Kosmowski, K.T. (2011). Functional Safety Analysis including Human Factors. International Journal of Performability Engineering 7 (1), 61-76.
• [18] Kosmowski, K.T., Barnert, T., Śliwiński, M. & Porzeziński, M. (2012). Functional Safety Assessment within the Risk Informed Decision Making Process. PSAM 11 – ESREL 2012, Helsinki.
• [19] OECD/IFP (2011). Project on Future Global Shocks. Reducing Systemic Cybersecurity Risk. IFP/ WKP/ FGS.
• [20] SINTEF (2007). The SeSa Method for Assessing Secure Remote Access to Safety Instrumented Systems. SINTEF A1626.
• [21] SINTEF (2010). Reliability Data for Safety Instrumented Systems - PDS Data Handbook. Edition, SINTEF A13502.
• [22] Siemens AG (2011). Operational Guidelines for Industrial Security. Proposals and recommendations for technical and organizational measures for secure operation of plant and machinery.
• [23] Stouffer, K., Falco, J. & Scarfone, K. (2011). Guide to Industrial Control Systems (ICS) Security. Recommendations of the National Institute of Standards and Technology. NIST Special Publication 800-82.