Security for Safety

Safety-critical systems are increasingly interconnected, be it through local networks or even through the Internet. This raises security concerns for both stakeholders and end users, since these traditionally closed systems now expose communication interfaces, making them vulnerable to all kinds of attacks that might be exploited even from remote locations over the Internet.

Fraunhofer IESE has teams of experts who focus on both security technology and safety engineering. We offer you a safety-security co-engineering service so that you can be assured that your safety-critical systems will be well protected from cyber-attacks. In addition, we can support you in setting up adequate safety and security engineering lifecycles at your company and underpin them with corresponding tooling for model-based engineering. The tooling can be based upon our safeTbox tool, which could also be tailored to your specific needs, such as specific methods or techniques, automation, or integration with other tools.

As an applied research institution, we have been investigating different approaches related to safety-security co-engineering in a range of national and European projects as well as in bilateral industry collaborations over the past years. These projects include the European projects CRYSTAL, EMC2, DEIS, and SECREDAS as well as the national projects SPES, SPES XT, CREST, and IUNO. For several years, we have been organizing the “Safety meets Security" conference together with Hanser to bring together safety and security experts from different domains and enable an exchange of ideas about challenges, solutions, and standardization activities.

Selected Projects

 

Reference Project DEIS

Dependability Engineering Innovation for Cyber-Physical Systems

Development of a holistic approach for the safety assurance of cyber-physical systems at development time and at runtime. Key contributions of Fraunhofer IESE include the concept and the tool realization of “Digital Dependability Identities”, dependability-oriented Digital Twins of systems.

(Duration: 01/2017 - 12/2019)

 

Reference Project SECREDAS

Creation of trustworthy autonomous systems

Methods for the development of components for the creation of trustworthy autonomous systems.

(Duration: 05/2018 – 04/2021)

 

CRYSTAL: Critical System Engineering Acceleration

The process of developing, governing, and operating modern safety-critical embedded systems is highly complex and requires specialized tools supporting different activities throughout the entire product lifecycle.

 

SPES_XT: Software Platform Embedded Systems “XT”

While the complexity of embedded systems is increasing rapidly, innovation cycles are becoming ever shorter. This trend can now also be observed increasingly in safety-relevant applications.

 

EMC² – Safe Teamwork in Open Systems

Thanks to multi-core CPUs, the newest generations of embedded systems are able to manage highly complex tasks at comparatively low costs. Self-contained systems are becoming open systems – so-called “Smart Ecosystems” –, which must act dependably in every situation.

 

IUNO

BMBF project on the development of workable concepts and solutions for IT security in Industrie 4.0 in collaboration with 20 partners from industry and research.

Selected Publications

Martin, H., Ma, Z., Schmittner, C., Winkler, B., Krammer, M., Schneider, D., ... & Kreiner, C. (2020). Combined automotive safety and security pattern engineering approach. Reliability Engineering & System Safety, 198, 106773.

Schneider, D., Braband, J., Schoitsch, E., Uhrig, S., & Katzenbeisser, S. (2019). Safety and Security Coengineering in Embedded Systems. Security and Communication Networks, 2019.

Schneider, D., Trapp, M., Dörr, J., Dukanovic, S., Henkel, T., Khondoker, R., ... & Zelle, D. (2017). Umfassende Sicherheit. Informatik-Spektrum, 40(5), 419-429.

Amorim, T., Schneider, D., Nguyen, V. Y., Schmittner, C., & Schoitsch, E. (2015). Five Major Reasons Why Safety and Security Haven’t Married (Yet). ERCIM News 104, Trustworthy Systems of Systems, 16-17.

Schneider, D., Armengaud, E., & Schoitsch, E. (2014, September). Towards trust assurance and certification in cyber-physical systems. In International Conference on Computer Safety, Reliability, and Security (pp. 180-191). Springer, Cham.