{"title":"将 STPA-sec 安全方法转化为基于模型的工程方法","authors":"Ehab Silawi, Avi Shaked, Yoram Reich","doi":"10.1002/iis2.13249","DOIUrl":null,"url":null,"abstract":"<p>In today's interconnected digital ecosystem, protecting cyber-physical systems is critical. STPA-Sec is a systematic method that allows to analyze system designs and identify vulnerabilities in those designs from the onset and throughout the system lifecycle. In this article, we describe a carefully designed metamodel that accommodates the concepts and steps of the method. We translate key concepts from STPA-Sec into a metamodel, with the intention of facilitating a more structured and disciplined application of STPA-Sec. We demonstrate the advantage of using the metamodel in two case studies. This article offers a step forward in the rigorous application of STPA-Sec.</p>","PeriodicalId":100663,"journal":{"name":"INCOSE International Symposium","volume":"34 1","pages":"1948-1963"},"PeriodicalIF":0.0000,"publicationDate":"2024-09-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"TRANSLATING THE STPA-SEC SECURITY METHOD INTO A MODEL-BASED ENGINEERING APPROACH\",\"authors\":\"Ehab Silawi, Avi Shaked, Yoram Reich\",\"doi\":\"10.1002/iis2.13249\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<p>In today's interconnected digital ecosystem, protecting cyber-physical systems is critical. STPA-Sec is a systematic method that allows to analyze system designs and identify vulnerabilities in those designs from the onset and throughout the system lifecycle. In this article, we describe a carefully designed metamodel that accommodates the concepts and steps of the method. We translate key concepts from STPA-Sec into a metamodel, with the intention of facilitating a more structured and disciplined application of STPA-Sec. We demonstrate the advantage of using the metamodel in two case studies. This article offers a step forward in the rigorous application of STPA-Sec.</p>\",\"PeriodicalId\":100663,\"journal\":{\"name\":\"INCOSE International Symposium\",\"volume\":\"34 1\",\"pages\":\"1948-1963\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-09-07\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"INCOSE International Symposium\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://onlinelibrary.wiley.com/doi/10.1002/iis2.13249\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"INCOSE International Symposium","FirstCategoryId":"1085","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1002/iis2.13249","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
TRANSLATING THE STPA-SEC SECURITY METHOD INTO A MODEL-BASED ENGINEERING APPROACH
In today's interconnected digital ecosystem, protecting cyber-physical systems is critical. STPA-Sec is a systematic method that allows to analyze system designs and identify vulnerabilities in those designs from the onset and throughout the system lifecycle. In this article, we describe a carefully designed metamodel that accommodates the concepts and steps of the method. We translate key concepts from STPA-Sec into a metamodel, with the intention of facilitating a more structured and disciplined application of STPA-Sec. We demonstrate the advantage of using the metamodel in two case studies. This article offers a step forward in the rigorous application of STPA-Sec.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
