Logo des Repositoriums

Auflistung nach Autor:in "Kriso, Stefan"

1 - 2 von 2
  • Konferenzbeitrag
    Automotive safety and security integration challenges
    (Automotive - Safety & Security 2014, 2015) Glas, Benjamin; Gebauer, Carsten; Hänger, Jochen; Heyl, Andreas; Klarmann, Jürgen; Kriso, Stefan; Vembar, Priyamvadha; Wörz, Philipp
    The ever increasing complexity of automotive vehicular systems, their connection to external networks, to the internet of things as well as their greater internal networking opens doors to hacking and malicious attacks. Security and privacy risks in modern automotive vehicular systems are well publicized by now. That violation of security could lead to safety violations - is a well-argued and accepted argument. The safety discipline has matured over decades, but the security discipline is much younger. There are arguments and rightfully so, that the security engineering process is similar to the functional safety engineering process (formalized by the norm ISO 26262) and that they could be laid side-by-side and could be performed together - but, by a different set of experts. There are moves to define a security engineering process along the lines of a functional safety engineering process for automotive vehicular systems. But, are these efforts at formalizing safety-security sufficient to produce safe and secure systems? When one sets out on this path with the idea of building safe and secure systems, one realizes that there are quite a few challenges, contradictions, dissimilarities, concerns to be addressed before safe and secure systems started coming out of production lines. The effort of this paper is to bring some such challenge areas to the notice of the community and to suggest a way forward. Note $\bullet $The term “Functional Safety” relates to ISO $26262 \bullet $The term “Security” is used to mean Automotive Embedded Information Security $\bullet $All examples used in this paper are fictitious and do not necessarily reflect either concrete requirements or solutions.
  • Konferenzbeitrag
    ISO 26262 - Quo vadis?
    (Automotive - Safety & Security 2012, 2012) Kriso, Stefan
    Die ISO 26262 ist veröffentlicht und trägt damit einerseits zum Stand der Technik bei der Entwicklung sicherer elektrischer/elektronischer Systeme im Automobil bei. Andererseits sind einige Anforderungen der ISO 26262 visionär formuliert, so dass es nicht möglich ist, die Norm zu ihrem Veröffentlichungszeitpunkt umgesetzt zu haben, sondern es ist ein Einführungszeitraum notwendig. In dieser Zeit ist die Branche aufgefordert, praktikable und umsetzbare Interpretation der ISO 26262 zu finden, die der Intention der Norm möglichst nahe kommen sowie die Produktsicherheit nicht gefährden. Der Artikel nennt hierfür Beispiele und mögliche Lösungen.