A Survey on the Applicability of Safety, Security and Privacy Standards in Developing Dependable Systems
| Autor: | Jonny Vinter, Claire Loiseaux, Lijun Shan, Erwin Schoitsch, Behrooz Sangchoolie, Peter Folkesson |
|---|---|
| Rok vydání: | 2019 |
| Předmět: |
Security engineering
Software Risk analysis (engineering) business.industry 0202 electrical engineering electronic engineering information engineering 020206 networking & telecommunications 020207 software engineering 02 engineering and technology Business Service provider Safety standards Privacy engineering |
| Zdroj: | Lecture Notes in Computer Science ISBN: 9783030262495 SAFECOMP Workshops |
| Popis: | Safety-critical systems are required to comply with safety standards. These systems are increasingly digitized and networked to an extent where they need to also comply with security and privacy standards. This paper aims to provide insights into how practitioners apply the standards on safety, security or privacy (Sa/Se/Pr), as well as how they employ Sa/Se/Pr analysis methodologies and software tools to meet such criteria. To this end, we conducted a questionnaire-based survey within the participants of an EU project SECREDAS and obtained 21 responses. The results of our survey indicate that safety standards are widely applied by product and service providers, driven by the requirements from clients or regulators/authorities. When it comes to security standards, practitioners face a wider range of standards while few target specific industrial sectors. Some standards linking safety and security engineering are not widely used at the moment, or practitioners are not aware of this feature. For privacy engineering, the availability and usage of standards, analysis methodologies and software tools are relatively weaker than for safety and security, reflecting the fact that privacy engineering is an emerging concern for practitioners. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|