Functional safety with cybersecurity for the control and protection systems on example of the oil port infrastructure

• Autorzy: Śliwiński M. , Piesik E.
• Języki publikacji: EN

Abstrakty

EN

Safety and cybersecurity aspects consist of two different group of functional requirements for the industrial control and protection systems in the oil port installation. It is the main reason why the analyses of safety and cybersecurity shouldn’t be integrated directly. These article presented some important issues of the functional safety analysis with regard to cybersecurity aspects in the oil seaport infrastructure. The proposed approach will be composed of the following items: process and procedure based safety and cybersecurity management, integrated safety and cybersecurity assessment of industrial control system (ICS). The problem is illustrated on practical example of the part oil seaport installation. A method based on quantitative and qualitative information is proposed for the SIL (IEC 61508, 61511) verification with regard of the evaluation assurance levels (EAL) (ISO/IEC 15408), the security assurance levels (SAL) (IEC 62443).

Słowa kluczowe

EN

Gdańsk University of Technology; Gdansk; Poland

• Wydawca: Polskie Towarzystwo Bezpieczeństwa i Niezawodności
• Czasopismo: Journal of Polish Safety and Reliability Association
• Rocznik: 2018
• Tom: Vol. 9, No. 3
• Strony: 85--94
• Opis fizyczny: Bibliogr. 20 poz., rys., tab.

Twórcy

autor

Śliwiński M.

• Gdańsk University of Technology , Gdansk, Poland

autor

Piesik E.

• Gdańsk University of Technology , Gdansk, Poland

Bibliografia

• [1] Barnert, T., Kosmowski, K.T., Śliwiński, M. (2010). Integrated functional safety and security analysis of process control and protection systems with regard to uncertainty issues. Proceedings of PSAM 10, Seattle.
• [2] Barnert, T., Kosmowski, K.T., Śliwiński, M. (2010). A method for including the security aspects in the functional safety analysis of distributed control and protection systems. ESREL, Rhodes, Greece.
• [3] Barnert, T., Śliwiński, M. (2013). Functional safety and information security in the critical infrastructure objects and systems (in Polish), Modern communication and data transfer systems for safety and security. Wolters Kluwer, 476-507.
• [4] Goble, W., Cheddie, H. (2005). Safety instrumented systems verification: Practical probabilistic calculations. ISA.
• [5] Grøtan, T.O., Jaatun, M.G., Øien, K. & Onshus, T. (2007). The SeSa Method for Assesing Secure Remote Access to Safety Instrumented Systems (SINTEF A1626). Trondheim, Norway.
• [6] Hildebrandt, P. (2000). Critical aspects of safety, availability and communication in the control of a subsea gas pipeline, Requirements and Solutions HIMA.
• [7] Hokstad, P. (2004). A generalisation of the beta factor model, Proceedings of the European Safety & Reliability Conference, Berlin.
• [8] Hoyland, A., Rausand, M. (2004). System Reliability Theory. Models and Statistical Methods, Second Edition, John Wiley & Sons, Inc, New York.
• [9] IEC 61508 (2010). Functional Safety of Electrical/Electronic/Programmable Electronic Safety-Related Systems, Parts 1-7. International Electrotechnical Commission, Geneva.
• [10] IEC 61511 (2015). Functional safety: Safety Instrumented Systems for the Process Industry Sector. Parts 1-3. International Electrotechnical Commission, Geneva.
• [11] IEC 62443 (2013). Security for industrial automation and control systems. Parts 1-13 (undergoing development). International Electrotechnical Commission, Geneva.
• [12] ISO/IEC 15408 (1999). Information technology Security techniques – Evaluation criteria for IT security. Part 1-3. International Electrotechnical Commission, Geneva.
• [13] ISO 31000 (2009). Risk management - Principles and guidelines. International Organization for Standardization, Geneva.
• [14] Kosmowski, K.T., Śliwiński, M. & Barnert, T. (2006). Functional safety and security assessment of the control and protection systems. Proc. European Safety & Reliability Conference – ESREL, Estoril. Taylor & Francis Group, London.
• [15] Missala, T. (2010). Book of procedures for functional safety compliance evaluation of). protection systems in the process industry. Report no. 8795, PIAP, Warsaw.
• [16] Piesik, E., Śliwiński, M., Barnert, T. (2016). Determining and verifying the safety integrity level of the safety instrumented systems with the uncertainty and security aspects, Reliability Engineering & System Safety, 152, 259-272.
• [17] Schneider Electric (2014): Pipeline Management Solution An Integrated Solution for Pipeline Operators.
• [18] SESAMO (2014). Integrated Design and Evaluation Methodology. Security and Safety modelling. Artemis JU Grant Agr. no. 2295354.
• [19] SINTEF. (2010). Reliability Data for Safety Instrumented Systems - PDS Data Handbook. SINTEF 2010 edition.
• [20] Śliwiński, M., Kosmowski, K.T., Piesik, E. (2015). Verification of the safety integrity levels with regard of information security issues (in Polish), In: Advanced Systems for Automation and Diagnostics, PWNT, Gdańsk.

Uwagi

Opracowanie rekordu w ramach umowy 509/P-DUN/2018 ze środków MNiSW przeznaczonych na działalność upowszechniającą naukę (2019).