Security application of Failure Mode and Effect Analysis (FMEA)

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 8666 LNCS, Issue , 2014, Pages 310-325

  Schmittner, Christoph ^a   Gruber, Thomas ^a   Puschner, Peter ^b   Schoitsch, Erwin ^a  

^a AIT AUSTRIAN INSTITUTE OF TECHNOLOGY   (Austria)

^b VIENNA UNIVERSITY OF TECHNOLOGY   (Austria)

Author keywords

cause effect chain for security; combined analysis; FMEA; Safety analysis; security analysis; vulnerabilities

Indexed keywords

CHAINS; FAULT TREE ANALYSIS; RELIABILITY; RISK ASSESSMENT; SAFETY ENGINEERING; SECURITY SYSTEMS;

CAUSE-EFFECT; COMBINED ANALYSIS; FMEA; SAFETY ANALYSIS; SECURITY ANALYSIS; VULNERABILITIES;

SECURITY OF DATA;

EID: 84907085611     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-319-10506-2_21     Document Type: Conference Paper

References (24)

1. Dong-bo Pan, F.L.: Influence between Safety and Security. In: 2nd IEEE Conference on Industrial Electronics and Applications, ICIEA 2007, pp. 1323-1325 (2007)
2. Lautieri, S.: De-risking safety [military safety systems]. Computing and Control Engineering 17, 38-41 (2006)
3. IEC 60812: Analysis Techniques for System Reliability - Procedure for Failure Mode and Effects Analysis (FMEA). International Electrotechnical Commission
4. MIL-P-1629: Procedures for Performing a failure mode, effects and Criticality analysis. Department of Defense (US)
5. Reifer, D.J.: Software Failure Modes and Effects Analysis. IEEE Transactions on Reliability 28(3), 247-249 (1979)
6. Jacob, N.J.S., Stadler, J.: Software Failure Modes and Effects Analysis. In: 2013 Proceedings-Annual Reliability and Maintainability Symposium (RAMS), pp. 1-5 (2013)
7. Haapanen Pentti, H.A.: Failure Mode and Effects Analysis of Software-Based Automation Systems. STUK-Y TO-TR-19 0, vol. 2, p. 2 (August 2002)
8. IEC 61508, Functional Safety of Electrical/Electronic/Programmable Electronic Safetyrelated Systems (E/E/PE, or E/E/PES). International Electrotechnical Commission (2010)
9. IEC 62443: Industrial communication networks - Network and system security. International Electrotechnical Commission
10. Gorbenko, A., Kharchenko, V., Tarasyuk, O., Furmanov, A.: F(I)MEA-technique of web services analysis and dependability ensuring. In: Butler, M., Jones, C.B., Romanovsky, A., Troubitsyna, E. (eds.) Rigorous Development of Complex Fault-Tolerant Systems. LNCS, vol. 4157, pp. 153-167. Springer, Heidelberg (2006)
11. Haapanen, P., Helminen, A.: Failure mode and effects analysis of software-based automation systems. In: Radiation and Nuclear Safety Authority, Helsinki, Finland (2002)
12. Frank Swiderski, W.S.: Threat Modeling. Microsoft Press (2004)
13. Laprie, J.-C.: Dependable Computing: Concepts, Limits, Challenges. Digest of Papers FTCS-15, 2-11 (1985)
14. ISO/IEC:27002: Information technology - security techniques - Code of practice for information security management. International Organization for Standardization (ISO), International Electrotechnical Commission (IEC)
15. ISO/IEC 27005, Information technology - Security techniques - Information security risk management. International Organization for Standardization (ISO), International Electrotechnical Commission, IEC (2008)
16. Microsoft, "Security Development Lifecycle," Microsoft (2010)
17. Tehranipoor, M., Koushanfar, F.: A survey of hardware Trojan taxonomy and detection (2009)
18. Shostack., A., Lambert., S., Ostwald., T., Hernan, S.: Uncover Security Design Flaws Using The STRIDE Approach. MSDN Magazine (2006)
19. Powell, D., Stroud, R., et al.: Conceptual model and architecture of MAFTIA. Technical Report Series-University of Newcastle Upon Tyne Computing Science (2003)
20. Eric Byres, J.L.: The Myths and Facts behind Cyber Security Risks for Industrial Control Systems. British Columbia Institute of Technology (2004)
21. Wilhoit, K.: Who's Really Attacking Your ICS Equipment. Trend Micro Incorporated (2013)
22. Viola, N., Corpino, S., Stesina, F., Fioriti, M.: Functional Analysis in Systems Engineering: methodology and applications (2012)
23. Meyer, U., Wetzel, S.: On the impact of GSM encryption and man-in-the-middle attacks on the security of interoperating GSM/UMTS networks. In: 15th IEEE International Symposium on Personal, Indoor and Mobile Radio Communications, PIMRC 2004, vol. 4, pp. 2876-2883 (2004)
24. Steiner, M., Liggesmeyer, P.: Combination of Safety and Security Analysis - Finding Security Problems That Threaten The Safety of a System. In: SAFECOMP 2013 - Workshop DECS (ERCIM/EWICS Workshop on Dependable Embedded and Cyberphysical Systems) of the 32nd International Conference on Computer Safety, Reliability and Security (2013)