No Cover Image

Journal article 415 views 33 downloads

A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems

Lin-Shen Liew, Giedre Sabaliauskaite Orcid Logo, Nandha Kumar Kandasamy Orcid Logo, Choong-Yew William Wong

Telecom, Volume: 2, Issue: 4, Pages: 536 - 553

Swansea University Author: Giedre Sabaliauskaite Orcid Logo

  • 61834.pdf

    PDF | Version of Record

    © 2021 by the authors. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license

    Download (1.02MB)

Check full text

DOI (Published version): 10.3390/telecom2040030

Abstract

Cyber-Physical Systems (CPSs) are getting increasingly complex and interconnected. Consequently, their inherent safety risks and security risks are so intertwined that the conventional analysis approaches which address them separately may be rendered inadequate. STPA (Systems-Theoretic Process Analy...

Full description

Published in: Telecom
ISSN: 2673-4001
Published: MDPI AG 2021
Online Access: Check full text

URI: https://cronfa.swan.ac.uk/Record/cronfa61834
Tags: Add Tag
No Tags, Be the first to tag this record!
first_indexed 2022-11-25T15:15:08Z
last_indexed 2023-01-13T19:22:51Z
id cronfa61834
recordtype SURis
fullrecord <?xml version="1.0"?><rfc1807><datestamp>2022-11-25T15:16:40.8758127</datestamp><bib-version>v2</bib-version><id>61834</id><entry>2022-11-09</entry><title>A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems</title><swanseaauthors><author><sid>6a674e2dbda3ec5f20599ce38199a7c3</sid><ORCID>0000-0003-1183-7001</ORCID><firstname>Giedre</firstname><surname>Sabaliauskaite</surname><name>Giedre Sabaliauskaite</name><active>true</active><ethesisStudent>false</ethesisStudent></author></swanseaauthors><date>2022-11-09</date><deptcode>SCS</deptcode><abstract>Cyber-Physical Systems (CPSs) are getting increasingly complex and interconnected. Consequently, their inherent safety risks and security risks are so intertwined that the conventional analysis approaches which address them separately may be rendered inadequate. STPA (Systems-Theoretic Process Analysis) is a top-down hazard analysis technique that has been incorporated into several recently proposed integrated Safety and Security (S&amp;S) analysis methods. This paper presents a novel methodology that leverages not only STPA, but also custom matrices to ensure a more comprehensive S&amp;S analysis. The proposed methodology is demonstrated using a case study of particular commercial cloud-based monitoring and control system for residential energy storage systems.</abstract><type>Journal Article</type><journal>Telecom</journal><volume>2</volume><journalNumber>4</journalNumber><paginationStart>536</paginationStart><paginationEnd>553</paginationEnd><publisher>MDPI AG</publisher><placeOfPublication/><isbnPrint/><isbnElectronic/><issnPrint/><issnElectronic>2673-4001</issnElectronic><keywords>cyber-physical system; hazard analysis; safety analysis; security analysis; STPA; STAMP; FMEA; STRIDE; matrix</keywords><publishedDay>9</publishedDay><publishedMonth>12</publishedMonth><publishedYear>2021</publishedYear><publishedDate>2021-12-09</publishedDate><doi>10.3390/telecom2040030</doi><url/><notes/><college>COLLEGE NANME</college><department>Computer Science</department><CollegeCode>COLLEGE CODE</CollegeCode><DepartmentCode>SCS</DepartmentCode><institution>Swansea University</institution><apcterm/><funders>This work was supported in part by the National Research Foundation (NRF), Prime Minister&#x2019;s Office, Singapore, under its National Cybersecurity R&amp;D Programme (NRF2018-NCR003- 0018) and administered by the Energy Market Authority (EMA) Singapore.</funders><projectreference/><lastEdited>2022-11-25T15:16:40.8758127</lastEdited><Created>2022-11-09T22:42:58.1687454</Created><path><level id="1">Faculty of Science and Engineering</level><level id="2">School of Mathematics and Computer Science - Computer Science</level></path><authors><author><firstname>Lin-Shen</firstname><surname>Liew</surname><order>1</order></author><author><firstname>Giedre</firstname><surname>Sabaliauskaite</surname><orcid>0000-0003-1183-7001</orcid><order>2</order></author><author><firstname>Nandha Kumar</firstname><surname>Kandasamy</surname><orcid>0000-0001-9393-8425</orcid><order>3</order></author><author><firstname>Choong-Yew William</firstname><surname>Wong</surname><order>4</order></author></authors><documents><document><filename>61834__25915__dd918d0f9e84466faed7539a49108e77.pdf</filename><originalFilename>61834.pdf</originalFilename><uploaded>2022-11-25T15:15:28.7703437</uploaded><type>Output</type><contentLength>1069170</contentLength><contentType>application/pdf</contentType><version>Version of Record</version><cronfaStatus>true</cronfaStatus><documentNotes>&#xA9; 2021 by the authors. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license</documentNotes><copyrightCorrect>true</copyrightCorrect><language>eng</language><licence>https://creativecommons.org/licenses/by/4.0/</licence></document></documents><OutputDurs/></rfc1807>
spelling 2022-11-25T15:16:40.8758127 v2 61834 2022-11-09 A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems 6a674e2dbda3ec5f20599ce38199a7c3 0000-0003-1183-7001 Giedre Sabaliauskaite Giedre Sabaliauskaite true false 2022-11-09 SCS Cyber-Physical Systems (CPSs) are getting increasingly complex and interconnected. Consequently, their inherent safety risks and security risks are so intertwined that the conventional analysis approaches which address them separately may be rendered inadequate. STPA (Systems-Theoretic Process Analysis) is a top-down hazard analysis technique that has been incorporated into several recently proposed integrated Safety and Security (S&S) analysis methods. This paper presents a novel methodology that leverages not only STPA, but also custom matrices to ensure a more comprehensive S&S analysis. The proposed methodology is demonstrated using a case study of particular commercial cloud-based monitoring and control system for residential energy storage systems. Journal Article Telecom 2 4 536 553 MDPI AG 2673-4001 cyber-physical system; hazard analysis; safety analysis; security analysis; STPA; STAMP; FMEA; STRIDE; matrix 9 12 2021 2021-12-09 10.3390/telecom2040030 COLLEGE NANME Computer Science COLLEGE CODE SCS Swansea University This work was supported in part by the National Research Foundation (NRF), Prime Minister’s Office, Singapore, under its National Cybersecurity R&D Programme (NRF2018-NCR003- 0018) and administered by the Energy Market Authority (EMA) Singapore. 2022-11-25T15:16:40.8758127 2022-11-09T22:42:58.1687454 Faculty of Science and Engineering School of Mathematics and Computer Science - Computer Science Lin-Shen Liew 1 Giedre Sabaliauskaite 0000-0003-1183-7001 2 Nandha Kumar Kandasamy 0000-0001-9393-8425 3 Choong-Yew William Wong 4 61834__25915__dd918d0f9e84466faed7539a49108e77.pdf 61834.pdf 2022-11-25T15:15:28.7703437 Output 1069170 application/pdf Version of Record true © 2021 by the authors. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license true eng https://creativecommons.org/licenses/by/4.0/
title A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems
spellingShingle A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems
Giedre Sabaliauskaite
title_short A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems
title_full A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems
title_fullStr A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems
title_full_unstemmed A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems
title_sort A Novel System-Theoretic Matrix-Based Approach to Analysing Safety and Security of Cyber-Physical Systems
author_id_str_mv 6a674e2dbda3ec5f20599ce38199a7c3
author_id_fullname_str_mv 6a674e2dbda3ec5f20599ce38199a7c3_***_Giedre Sabaliauskaite
author Giedre Sabaliauskaite
author2 Lin-Shen Liew
Giedre Sabaliauskaite
Nandha Kumar Kandasamy
Choong-Yew William Wong
format Journal article
container_title Telecom
container_volume 2
container_issue 4
container_start_page 536
publishDate 2021
institution Swansea University
issn 2673-4001
doi_str_mv 10.3390/telecom2040030
publisher MDPI AG
college_str Faculty of Science and Engineering
hierarchytype
hierarchy_top_id facultyofscienceandengineering
hierarchy_top_title Faculty of Science and Engineering
hierarchy_parent_id facultyofscienceandengineering
hierarchy_parent_title Faculty of Science and Engineering
department_str School of Mathematics and Computer Science - Computer Science{{{_:::_}}}Faculty of Science and Engineering{{{_:::_}}}School of Mathematics and Computer Science - Computer Science
document_store_str 1
active_str 0
description Cyber-Physical Systems (CPSs) are getting increasingly complex and interconnected. Consequently, their inherent safety risks and security risks are so intertwined that the conventional analysis approaches which address them separately may be rendered inadequate. STPA (Systems-Theoretic Process Analysis) is a top-down hazard analysis technique that has been incorporated into several recently proposed integrated Safety and Security (S&S) analysis methods. This paper presents a novel methodology that leverages not only STPA, but also custom matrices to ensure a more comprehensive S&S analysis. The proposed methodology is demonstrated using a case study of particular commercial cloud-based monitoring and control system for residential energy storage systems.
published_date 2021-12-09T04:20:58Z
_version_ 1763754385778671616
score 10.9992285

Similar Items