Semi-automatic Integrated Safety and Security Analysis for Automotive Systems

There is a steady trend towards increasing the connectivity of vehicles – especially for realizing automated driving functions. This also increases the attack surface, which is crucial due to the safety-criticality of vehicles. Hence, engineering methods are required, that account for both security and safety, and identify conflicts and synergies. However, in the automotive domain, newly introduced security analysis methods meet well-established safety analysis methods. Both are applied in separate silos which hinders communication and increases development effort. In this paper, we introduce an integrated safety and security analysis method that supports the analysis of correlations between attacks and hazards on an architectural level. It integrates with an existing model-based requirements engineering method, and automates modeling and analysis steps to foster regular communication with low effort in early development phases. We evaluated the approach in a case study with an automated driving function.