Model-Based Systems Engineering using Security Design Patterns in the context of ISO/SAE 21434
Year: 2023
Editor: Kevin Otto, Boris Eisenbart, Claudia Eckert, Benoit Eynard, Dieter Krause, Josef Oehmen, Nadège Troussier
Author: Japs, Sergej (1); Faheem, Faizan (2); Anacker, Harald (1); Husung, Stephan (2); Dumitrescu, Roman (3)
Series: ICED
Institution: 1: Fraunhofer Research Institute for Mechatronic Systems Design IEM; 2: Technische Universität Ilmenau; 3: Universität Paderborn
Section: Design Methods
Page(s): 2675-2684
DOI number: https://doi.org/10.1017/pds.2023.268
ISBN: -
ISSN: -
Abstract
The development of modern vehicles is complex, especially regarding compliance with security and safety. ISO/SAE 21434 considers security and safety along the entire product life cycle. According to the standard, a system architecture, a risk analysis, and the application of countermeasures are carried out in the early system design.
Design patterns are solutions to known design problems. Security Design Patterns (SDP) describe countermeasures and are used to reduce risk. After our literature review, we did not find a suitable approach that presents SDPs that would be applicable in early system design.
In this paper, we present 10 SDPs for early system design, which we evaluated during an 11-week student project with 28 teams. We present the results of the quantitative analysis and the evaluation of the feedback.
Keywords: ISO/SAE 21434, Systems Engineering (SE), Knowledge management, Risk management, Case study