From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security

Luca Arnaboldi; David Aspinall; Christina Kolb; Saša Radomirović

doi:10.1007/978-3-032-02018-5_7

From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security

Luca Arnaboldi^*
, David Aspinall
, Christina Kolb
, Saša Radomirović

^*Corresponding author for this work

Industrial Engineering & Business Information Systems

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

1 Downloads (Pure)

Abstract

We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.

Original language	English
Title of host publication	Computer Safety, Reliability, and Security
Subtitle of host publication	CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings
Editors	Martin Törngren, Barbara Gallina, Erwin Schoitsch, Elena Troubitsyna, Friedemann Bitsch
Place of Publication	Cham
Publisher	Springer
Pages	88-100
Number of pages	13
ISBN (Electronic)	978-3-032-02018-5
ISBN (Print)	978-3-032-02017-8
DOIs	https://doi.org/10.1007/978-3-032-02018-5_7
Publication status	Published - 22 Aug 2025
Event	44th International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2025 - Stockholm, Sweden Duration: 9 Sept 2025 → 9 Sept 2025 Conference number: 44

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	15955
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	44th International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2025
Abbreviated title	SAFECOMP
Country/Territory	Sweden
City	Stockholm
Period	9/09/25 → 9/09/25

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 3 Good Health and Well-being
SDG 7 Affordable and Clean Energy
SDG 9 Industry, Innovation, and Infrastructure
SDG 12 Responsible Consumption and Production

Keywords

2026 OA procedure

Access to Document

10.1007/978-3-032-02018-5_7

978-3-032-02018-5_7Final published version, 831 KBLicence: Taverne

Cite this

Arnaboldi, L., Aspinall, D., Kolb, C., & Radomirović, S. (2025). From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. In M. Törngren, B. Gallina, E. Schoitsch, E. Troubitsyna, & F. Bitsch (Eds.), Computer Safety, Reliability, and Security: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings (pp. 88-100). (Lecture Notes in Computer Science; Vol. 15955). Springer. https://doi.org/10.1007/978-3-032-02018-5_7

Arnaboldi, Luca ; Aspinall, David ; Kolb, Christina et al. / From Bouncing Break-ins to Frictional Firewalls : Ideas About Interacting Requirements for Vehicle Safety and Security. Computer Safety, Reliability, and Security: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. editor / Martin Törngren ; Barbara Gallina ; Erwin Schoitsch ; Elena Troubitsyna ; Friedemann Bitsch. Cham : Springer, 2025. pp. 88-100 (Lecture Notes in Computer Science).

@inproceedings{f7fe0de492b14b2888ca5c085afb0225,

title = "From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security",

abstract = "We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.",

keywords = "2026 OA procedure",

author = "Luca Arnaboldi and David Aspinall and Christina Kolb and Sa{\v s}a Radomirovi{\'c}",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.; 44th International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2025, SAFECOMP ; Conference date: 09-09-2025 Through 09-09-2025",

year = "2025",

month = aug,

day = "22",

doi = "10.1007/978-3-032-02018-5\_7",

language = "English",

isbn = "978-3-032-02017-8",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "88--100",

editor = "Martin T{\"o}rngren and Barbara Gallina and Erwin Schoitsch and Elena Troubitsyna and Friedemann Bitsch",

booktitle = "Computer Safety, Reliability, and Security",

address = "Germany",

}

Arnaboldi, L, Aspinall, D, Kolb, C & Radomirović, S 2025, From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. in M Törngren, B Gallina, E Schoitsch, E Troubitsyna & F Bitsch (eds), Computer Safety, Reliability, and Security: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. Lecture Notes in Computer Science, vol. 15955, Springer, Cham, pp. 88-100, 44th International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2025, Stockholm, Sweden, 9/09/25. https://doi.org/10.1007/978-3-032-02018-5_7

From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. / Arnaboldi, Luca; Aspinall, David; Kolb, Christina et al.
Computer Safety, Reliability, and Security: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. ed. / Martin Törngren; Barbara Gallina; Erwin Schoitsch; Elena Troubitsyna; Friedemann Bitsch. Cham: Springer, 2025. p. 88-100 (Lecture Notes in Computer Science; Vol. 15955).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - From Bouncing Break-ins to Frictional Firewalls

T2 - 44th International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2025

AU - Arnaboldi, Luca

AU - Aspinall, David

AU - Kolb, Christina

AU - Radomirović, Saša

N1 - Conference code: 44

PY - 2025/8/22

Y1 - 2025/8/22

N2 - We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.

AB - We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.

KW - 2026 OA procedure

UR - https://www.scopus.com/pages/publications/105014735692

U2 - 10.1007/978-3-032-02018-5_7

DO - 10.1007/978-3-032-02018-5_7

M3 - Conference contribution

AN - SCOPUS:105014735692

SN - 978-3-032-02017-8

T3 - Lecture Notes in Computer Science

SP - 88

EP - 100

BT - Computer Safety, Reliability, and Security

A2 - Törngren, Martin

A2 - Gallina, Barbara

A2 - Schoitsch, Erwin

A2 - Troubitsyna, Elena

A2 - Bitsch, Friedemann

PB - Springer

CY - Cham

Y2 - 9 September 2025 through 9 September 2025

ER -

Arnaboldi L, Aspinall D, Kolb C, Radomirović S. From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. In Törngren M, Gallina B, Schoitsch E, Troubitsyna E, Bitsch F, editors, Computer Safety, Reliability, and Security: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. Cham: Springer. 2025. p. 88-100. (Lecture Notes in Computer Science). doi: 10.1007/978-3-032-02018-5_7