Standard Compliant Hazard and Threat Analysis for the Automotive Domain

نویسندگان

  • Kristian Beckers
  • Jürgen Dürrwang
  • Dominik Holling
چکیده

The automotive industry has successfully collaborated to release the ISO 26262 standard for developing safe software for cars. The standard describes in detail how to conduct hazard analysis and risk assessments to determine the necessary safety measures for each feature. However, the standard does not concern threat analysis for malicious attackers or how to select appropriate security countermeasures. We propose the application of ISO 27001 for this purpose and show how it can be applied together with ISO 26262. We show how ISO 26262 documentation can be re-used and enhanced to satisfy the analysis and documentation demands of the ISO 27001 standard. We illustrate our approach based on an electronic steering column lock system.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Using STPA in an ISO 26262 Compliant Process

ISO 26262 is the de facto standard for automotive functional safety, and every automotive Original Equipment Manufacturer (OEM), as well as their major suppliers, are striving to ensure that their development processes are ISO 26262 compliant. ISO 26262 mandates both hazard analysis and risk assessment. Systems Theoretic Process Analysis (STPA) is a relatively new hazard analysis technique, tha...

متن کامل

Building a Safety Case in Compliance with ISO 26262 for Fuel Level Estimation and Display System

Nowadays, road vehicles, including trucks, are characterized by an increased complexity due to a greater variety of software, and a greater number of sensors and actuators. As a consequence, there is an increased risk in terms of software or hardware failures that could lead to unacceptable hazards. Thus safety, more precisely functional safety, is a crucial property that must be ensured to avo...

متن کامل

Global GAP Standard Compliance and Profitability: A Case Study of Smallholder Pineapple Farmers in Akuapem South of Ghana

The present study examined the perception of smallholder pineapple farmers on Global GAP standard compliance, assessed compliant farmers’ rate of adherence to standard requirements, and compared the average farm profit of Global GAP compliant and non-compliant pineapple farmers in Akuapem South Municipal Area of Ghana. The study used mainly farm level data solicited from 150 randomly selected p...

متن کامل

Certification of Embedded Software - Impact of ISO DIS 26262 in the Automotive Domain

The publication of the ISO 26262 (”Road vehicles – Functional safety”) as Draft International Standard (DIS) and its expected release as international standard in 2011 has a substantial impact on the development of automotive software. By defining the current state of technique for the development of safe automotive software, the lack of or inadequate use of these techniques has severe legal co...

متن کامل

Analysis of ISO 26262 Compliant Techniques for the Automotive Domain

The ISO 26262 standard defines functional safety for automotive E/E systems. Since the publication of the first edition of this standard in 2011, many different safety techniques complying to the ISO 26262 have been developed. However, it is not clear which parts and (sub-) phases of the standard are targeted by these techniques and which objectives of the standard are particularly addressed. T...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:
  • Information

دوره 7  شماره 

صفحات  -

تاریخ انتشار 2016