• Corpus ID: 215827744

Model-driven Engineering of Safety and Security Systems: A Systematic Mapping Study

  title={Model-driven Engineering of Safety and Security Systems: A Systematic Mapping Study},
  author={Atif Mashkoor and Alexander Egyed and Robert Wille},
This paper presents a systematic mapping study on the model-driven engineering of safety and security concerns in systems. Integrated modeling and development of both safety and security concerns is an emerging field of research. Our mapping study provides an overview of the current state-of-the-art in this field. Through a rigorous and systematic process, this study carefully selected 95 publications out of 17,927 relevant papers published between 1992 and 2018. This paper then proposes and… 

Figures and Tables from this paper

Model-based Safety and Security Co-analysis: Survey and Identification of Gaps
A key finding is that the exact nature of safety-security interaction is still ill-understood, and existing formalisms merge previous safety and security formalisms, without introducing specific constructs to model safety- security interactions, or metrics to analyze trade offs.
A goal‐driven approach for the joint deployment of safety and security standards for operators of essential services
This paper advocates for the use of a model‐based approach to provide a sound risk‐oriented process and to capture rationales interconnecting top‐level standards/directives to concrete safety/security measures, and shows the benefits of adopting goal‐oriented analysis that can be transposed later to domain‐specific frameworks.
Model-Driven Architectural Framework towards Safe and Secure Nuclear Power Reactors
This work integrates the development process of I&C systems and the involvement of stakeholders within a model-driven methodology and introduces a new architectural framework that defines various concepts, allowing system implementations and encompassing different development phases, all actors, and system concerns.


Safety and Security Interactions Modeling Using the BDMP Formalism: Case Study of a Pipeline
This paper presents an analysis method that enables the identification and ranking of risks leading to a safety issue, regardless of the origin of those risks: accidental or due to malevolence.
The Integration of Safety and Security Requirements
This paper investigates safety and security requirements specification methods, and proposed techniques for the integration of contrasting methodologies, and identifies several areas that can cause problems when attempt to harmonize safety andSecurity requirements techniques.
A Viewpoint-Based Approach for Formal Safety & Security Assessment of System Architectures
This work presents an integrated process where system engineers design the model of the system architecture, safety and security engineers specify the propagation of failures and attacks inside each component of the architecture using their dedicated tool.
A Combined Process for Elicitation and Analysis of Safety and Security Requirements
A combined method covering the harm identification and analysis part of the assessment process using UML-based models is suggested, applied on a case from the Air Traffic Management domain.
Co-engineering Safety and Security in Industrial Control Systems: A Formal Outlook
This paper relies on modelling and refinement in Event-B to systematically uncover mutual interdependencies and the constraints that should be imposed on the system to guarantee its safety even in the presence of security attacks.
Towards Combined Safety and Security Constraints Analysis
A novel integrated approach for safety analysis and security analysis of systems that builds on a specification of security and safety constraints and outlines a scheme to automatically analyze and detect conflicts between and pairwise reinforcements of various constraints.
Cross-fertilization between safety and security engineering
Deriving and Formalising Safety and Security Requirements for Control Systems
This paper proposes an approach that allows the designers to derive and formalise safety and security requirements in a structured systematic way and relies on Event-B framework to formally specify and verify them.
Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications
A key outcome is the distinction between sequential and non-sequential integration of safety andSecurity, related to the order in which safety and security risks are assessed.
From Safety Models to Security Models: Preliminary Lessons Learnt
A security modelling ana analysis approach based on the AltaRica language and associated tools is described and illustrated with an avionics case-study.