Towards Interdependent Safety Security Assessments Using Bowties

Luca Arnaboldi*, David Aspinall

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract / Description of output

We present a way to combine security and safety assessments using Bowtie Diagrams. Bowties model both the causes leading up to a central failure event and consequences which arise from that event, as well as barriers which impede events. Bowties have previously been used separately for security and safety assessments, but we suggest that a unified treatment in a single model can elegantly capture safety-security interdependencies of several kinds. We showcase our approach with the example of the October 2021 Facebook DNS shutdown, examining the chains of events and the interplay between the security and safety barriers which caused the outage.

Original languageEnglish
Title of host publicationComputer Safety, Reliability, and Security. SAFECOMP 2022 Workshops - DECSoS, DepDevOps, SASSUR, SENSEI, USDAI, and WAISE, Proceedings
EditorsMario Trapp, Erwin Schoitsch, Jérémie Guiochet, Friedemann Bitsch
PublisherSpringer
Pages211-229
Number of pages19
ISBN (Print)9783031148613
DOIs
Publication statusPublished - 9 Jun 2022
EventWorkshops on DECSoS, DepDevOps, SASSUR, SENSEI, USDAI, and WAISE, held in conjunction with the 41st International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2022 - Munich, Germany
Duration: 6 Sept 20229 Sept 2022

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume13415 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

ConferenceWorkshops on DECSoS, DepDevOps, SASSUR, SENSEI, USDAI, and WAISE, held in conjunction with the 41st International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2022
Country/TerritoryGermany
CityMunich
Period6/09/229/09/22

Keywords / Materials (for Non-textual outputs)

  • Bowtie diagrams
  • risk analysis
  • safety and security

Fingerprint

Dive into the research topics of 'Towards Interdependent Safety Security Assessments Using Bowties'. Together they form a unique fingerprint.

Cite this