George Matta, Sebastian Chlup, Abdelkader Magdy Shaaban, Christoph Schmittner, Andreas Pinzenöhler, Elke Szalai and Markus Tauber

Risk Management and Standard Compliance for Cyber-Physical Systems of Systems

The Internet of Things (IoT) and cloud technologies are increasingly implemented in the form of Cyber-Physical Systems of Systems (CPSoS) for the railway sector. In order to satisfy the security requirements of Cyber-Physical Systems (CPS), domainspecific risk identification assessment procedures have been developed. Threat modelling is one of the most commonly used methods for threat identification for the security analysis of CPSoS and is capable of targeting various domains. This paper reports our experience of using a risk management framework identify the most critical security vulnerabilities in CPSoS in the domain and shows the broader impact this work can have on the domain of safety and security management. Moreover, we emphasize the application of common analytical methods for cyber-security based on international industry standards to identify the most vulnerable assets. These will be applied to a meta-model for automated railway systems in the concept phase to support the development and deployment of these systems. Furthermore, it is the first step to create a secure and standard complaint system by design.

Reference:

DOI: 10.36244/ICJ.2021.2.5

Download 

Please cite this paper the following way:

George Matta, Sebastian Chlup, Abdelkader Magdy Shaaban, Christoph Schmittner, Andreas Pinzenöhler, Elke Szalai and Markus Tauber, "Risk Management and Standard Compliance for Cyber-Physical Systems of Systems", Infocommunications Journal, Vol. XIII, No 2, July 2021, p. 32-39., https://www.doi.org/10.36244/ICJ.2021.2.5

Technical Co-Sponsors


  

  

 

Supporters



National Cultural Fund, Hungary
 

National Cooperation Fund, Hungary