Achieving Data Privacy with a Dependability Mechanism for Cyber Physical Systems

Cyber-Physical-Systems (CPS), such as smart cars and implanted medical devices, are systems of collaborating computational entities. The open and cooperative nature of CPS poses a significant new challenge in assuring dependability. The DEIS project addresses this important and unsolved challenge through its key innovation which is the concept of a Digital Dependability Identity (DDI). A DDI contains all the information that uniquely describes the dependability characteristics of a CPS or CPS component. Data protection and privacy is a key component of dependability and is regulated by the General Data Protection Regulation (GDPR) for all European Union (EU) and European Economic Area (EEA) citizens. In this paper we present an overview of the DDI. Additionally, we provide our concept of how the DDI can support assurance of technical system security requirements derived from GDPR. Additionally, we demonstrate how this concept is implemented in an automotive use case.