Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications

Sabarathinam Chockalingam; Dina Hadziosmanovic; Wolter Pieters; André Texeira; Pieter van Gelder

Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications

Sabarathinam Chockalingam, Dina Hadziosmanovic, Wolter Pieters, André Texeira, Pieter van Gelder

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

223 Downloads (Pure)

Abstract

Over the last years, we have seen several security incidents that compromised system safety, of which some caused physical harm to people. Meanwhile, various risk assessment methods have been developed that integrate safety and security, and these could help to address the corresponding threats by implementing suitable risk treatment plans. However, an overarching overview of these methods, systematizing the characteristics of such methods, is missing. In this paper, we conduct a systematic literature review, and identify 7 integrated safety and security risk assessment methods. We analyze these methods based on 5 different criteria, and identify key characteristics and applications. A key outcome is the distinction between sequential and non-sequential integration of safety and security, related to the order in which safety and security risks are assessed. This study provides a basis for developing more effective integrated safety and security risk assessment methods in the future.

Original language	English
Title of host publication	Critical Information Infrastructures Security
Subtitle of host publication	11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers
Editors	Grigore Havarneanu, Roberto Setola, Hypatia Nassopoulos, Stephen Wolthusen
Place of Publication	Cham
Publisher	Springer
Pages	-
ISBN (Electronic)	978-3-319-71368-7
ISBN (Print)	978-3-319-71367-0
Publication status	Published - Oct 2016
Event	11th International Conference on Critical Information Infrastructures Security, CRITIS 2016 - Paris, France Duration: 10 Oct 2016 → 12 Oct 2016 Conference number: 11 http://critis2016.org/

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	10242
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Name	Security and Cryptology
Publisher	Springer

Conference

Conference	11th International Conference on Critical Information Infrastructures Security, CRITIS 2016
Abbreviated title	CRITIS
Country	France
City	Paris
Period	10/10/16 → 12/10/16
Internet address	http://critis2016.org/

Keywords

EC Grant Agreement nr.: FP7/318003
EWI-27367
EC Grant Agreement nr.: FP7/2007-2013
IR-101904
METIS-318577
Integrated safety and security risk assessment
Risk analysis
Risk evaluation
Risk identification
Safety risk assessment
Security risk assessment

Access to Document

Chockalingram2017integrated
restricted
Accepted author version, 193 KB

Fingerprint Dive into the research topics of 'Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications'. Together they form a unique fingerprint.

Cite this

Chockalingam, S., Hadziosmanovic, D., Pieters, W., Texeira, A., & van Gelder, P. (2016). Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications. In G. Havarneanu, R. Setola, H. Nassopoulos, & S. Wolthusen (Eds.), Critical Information Infrastructures Security: 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers (pp. -). (Lecture Notes in Computer Science; Vol. 10242), (Security and Cryptology). Springer.

Chockalingam, Sabarathinam ; Hadziosmanovic, Dina ; Pieters, Wolter ; Texeira, André ; van Gelder, Pieter. / Integrated Safety and Security Risk Assessment Methods : A Survey of Key Characteristics and Applications. Critical Information Infrastructures Security: 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers. editor / Grigore Havarneanu ; Roberto Setola ; Hypatia Nassopoulos ; Stephen Wolthusen. Cham : Springer, 2016. pp. - (Lecture Notes in Computer Science). (Security and Cryptology).

@inproceedings{b7f5aba11a624c9cb5951a9396af6402,

title = "Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications",

abstract = "Over the last years, we have seen several security incidents that compromised system safety, of which some caused physical harm to people. Meanwhile, various risk assessment methods have been developed that integrate safety and security, and these could help to address the corresponding threats by implementing suitable risk treatment plans. However, an overarching overview of these methods, systematizing the characteristics of such methods, is missing. In this paper, we conduct a systematic literature review, and identify 7 integrated safety and security risk assessment methods. We analyze these methods based on 5 different criteria, and identify key characteristics and applications. A key outcome is the distinction between sequential and non-sequential integration of safety and security, related to the order in which safety and security risks are assessed. This study provides a basis for developing more effective integrated safety and security risk assessment methods in the future.",

keywords = "EC Grant Agreement nr.: FP7/318003, EWI-27367, EC Grant Agreement nr.: FP7/2007-2013, IR-101904, METIS-318577, Integrated safety and security risk assessment, Risk analysis, Risk evaluation, Risk identification, Safety risk assessment, Security risk assessment",

author = "Sabarathinam Chockalingam and Dina Hadziosmanovic and Wolter Pieters and Andr{\'e} Texeira and {van Gelder}, Pieter",

note = "eemcs-eprint-27367 ; 11th International Conference on Critical Information Infrastructures Security, CRITIS 2016, CRITIS ; Conference date: 10-10-2016 Through 12-10-2016",

year = "2016",

month = oct,

language = "English",

isbn = "978-3-319-71367-0",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "--",

editor = "Grigore Havarneanu and Roberto Setola and Hypatia Nassopoulos and Stephen Wolthusen",

booktitle = "Critical Information Infrastructures Security",

address = "Netherlands",

url = "http://critis2016.org/",

}

Chockalingam, S, Hadziosmanovic, D, Pieters, W, Texeira, A & van Gelder, P 2016, Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications. in G Havarneanu, R Setola, H Nassopoulos & S Wolthusen (eds), Critical Information Infrastructures Security: 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers. Lecture Notes in Computer Science, vol. 10242, Security and Cryptology, Springer, Cham, pp. -, 11th International Conference on Critical Information Infrastructures Security, CRITIS 2016, Paris, France, 10/10/16.

Integrated Safety and Security Risk Assessment Methods : A Survey of Key Characteristics and Applications. / Chockalingam, Sabarathinam; Hadziosmanovic, Dina; Pieters, Wolter; Texeira, André; van Gelder, Pieter.

Critical Information Infrastructures Security: 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers. ed. / Grigore Havarneanu; Roberto Setola; Hypatia Nassopoulos; Stephen Wolthusen. Cham : Springer, 2016. p. - (Lecture Notes in Computer Science; Vol. 10242), (Security and Cryptology).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Integrated Safety and Security Risk Assessment Methods

T2 - 11th International Conference on Critical Information Infrastructures Security, CRITIS 2016

AU - Chockalingam, Sabarathinam

AU - Hadziosmanovic, Dina

AU - Pieters, Wolter

AU - Texeira, André

AU - van Gelder, Pieter

N1 - Conference code: 11

PY - 2016/10

Y1 - 2016/10

N2 - Over the last years, we have seen several security incidents that compromised system safety, of which some caused physical harm to people. Meanwhile, various risk assessment methods have been developed that integrate safety and security, and these could help to address the corresponding threats by implementing suitable risk treatment plans. However, an overarching overview of these methods, systematizing the characteristics of such methods, is missing. In this paper, we conduct a systematic literature review, and identify 7 integrated safety and security risk assessment methods. We analyze these methods based on 5 different criteria, and identify key characteristics and applications. A key outcome is the distinction between sequential and non-sequential integration of safety and security, related to the order in which safety and security risks are assessed. This study provides a basis for developing more effective integrated safety and security risk assessment methods in the future.

AB - Over the last years, we have seen several security incidents that compromised system safety, of which some caused physical harm to people. Meanwhile, various risk assessment methods have been developed that integrate safety and security, and these could help to address the corresponding threats by implementing suitable risk treatment plans. However, an overarching overview of these methods, systematizing the characteristics of such methods, is missing. In this paper, we conduct a systematic literature review, and identify 7 integrated safety and security risk assessment methods. We analyze these methods based on 5 different criteria, and identify key characteristics and applications. A key outcome is the distinction between sequential and non-sequential integration of safety and security, related to the order in which safety and security risks are assessed. This study provides a basis for developing more effective integrated safety and security risk assessment methods in the future.

KW - EC Grant Agreement nr.: FP7/318003

KW - EWI-27367

KW - EC Grant Agreement nr.: FP7/2007-2013

KW - IR-101904

KW - METIS-318577

KW - Integrated safety and security risk assessment

KW - Risk analysis

KW - Risk evaluation

KW - Risk identification

KW - Safety risk assessment

KW - Security risk assessment

M3 - Conference contribution

SN - 978-3-319-71367-0

T3 - Lecture Notes in Computer Science

SP - -

BT - Critical Information Infrastructures Security

A2 - Havarneanu, Grigore

A2 - Setola, Roberto

A2 - Nassopoulos, Hypatia

A2 - Wolthusen, Stephen

PB - Springer

CY - Cham

Y2 - 10 October 2016 through 12 October 2016

ER -

Chockalingam S, Hadziosmanovic D, Pieters W, Texeira A, van Gelder P. Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications. In Havarneanu G, Setola R, Nassopoulos H, Wolthusen S, editors, Critical Information Infrastructures Security: 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers. Cham: Springer. 2016. p. -. (Lecture Notes in Computer Science). (Security and Cryptology).