Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Qualitative and quantitative analysis of CFTs taking security causes into account

: Steiner, Max; Liggesmeyer, Peter


Koornneef, Floor (Ed.):
Computer Safety, Reliability, and Security. SAFECOMP 2015 Workshops: ASSURE, DECSoS, ISSE, RESA4CI, and SASSUR. Proceedings : Delft, the Netherlands, September 22, 2015
Cham: Springer International Publishing, 2015 (Lecture Notes in Computer Science 9338)
ISBN: 978-3-319-24248-4 (Print)
ISBN: 978-3-319-24249-1 (Online)
International Conference on Computer Safety, Reliability, and Security (SAFECOMP) <34, 2015, Delft>
Dependable Cyber-Physical Systems and Systems-of-Systems Workshop (DECSoS) <2015, Delft>
Fraunhofer IESE ()
safety analysis; security analysis; Component Fault Tree (CFT)

Component fault trees that contain safety basic events as well as security basic events cannot be analyzed like normal CFTs. Safety basic events are rated with probabilities in an interval [0,1], for security basic events simpler scales such as {low, medium, high} make more sense. In this paper an approach is described how to handle a quantitative safety analysis with different rating schemes for safety and security basic events. By doing so, it is possible to take security causes for safety failures into account and to rate their effect on system safety.