Dependability analysis of safety critical systems: Issues and challenges

Abstract Safety critical systems progressively used in domains such as nuclear power, transport, medical and information systems are often concerned with a formal process of dependability certification. The intent of dependability process is to ensure that these systems will deliver the expected services to its users. In order to ensure the dependability of large safety-critical systems, the software engineer or security professional needs a thorough knowledge of the process of dependability analysis. In the past several decades, a significant amount of attention has been devoted to the dependability assessment of safety-critical control systems from some perspectives such as reliability, availability, safety, and security. However, for analysis of the critical systems, there is no any universal accepted rigorous dependability analysis process, which helps to choose the metrics, techniques and methodologies for the dependability evaluation of such critical systems. This paper provides a comprehensive detailed literature survey in order to investigate different metrics, threats, means, techniques and methodologies to ensure the dependability of computer-based critical systems. The limitations of these elements are also analyzed with respect to their applicability in SC systems. In addition to this, highlighted various issues (gap), challenges and needs in the context of such systems. The direction for future research is suggested to extend the future scope of research. The purpose of this paper is to interpret a rigorous review concept, of relevance across a wide range of affairs. Therefore, this work helps to the academicians, researchers, and practitioners to put this into practice, analyze the shortcomings of existing research and identifying the open areas that are important for the related community.

[1]  Sriram Sankaranarayanan,et al.  Model-Based Dependability Analysis of Programmable Drug Infusion Pumps , 2011, FORMATS.

[2]  Gangyang Zheng,et al.  Applied research of Primary Pump Mission Profile construction , 2017 .

[3]  Seyed Morteza Babamir,et al.  Specification and Verification of Medical Monitoring System Using Petri-nets , 2014, Journal of medical signals and sensors.

[4]  Chuang Lin,et al.  Electricity services based dependability model of power grid communication networking , 2014, Tsinghua Science and Technology.

[5]  Jingjing Gu,et al.  A formal model and risk assessment method for security-critical real-time embedded systems , 2016, Comput. Secur..

[6]  Monika Singh,et al.  An UML+Z Framework For Validating And Verifying the Static Aspect of Safety Critical System , 2016 .

[7]  Myron Hecht,et al.  MEADEP and its application in dependability analysis for a nuclear power plant safety system , 1997 .

[8]  P. Seetharamaiah,et al.  Modeling of Safety-Critical Systems Using Petri Nets , 2015, SOEN.

[9]  Farooq Ahmad,et al.  Specification and verification of safety properties along a crossing region in a railway network control , 2013 .

[10]  Richard F. Paige,et al.  Fault trees for security system design and analysis , 2003, Comput. Secur..

[11]  Carl E. Landwehr,et al.  Basic concepts and taxonomy of dependable and secure computing , 2004, IEEE Transactions on Dependable and Secure Computing.

[12]  Hua Li,et al.  Analyzing and verifying Petri net model of security protocol based on Maria , 2010, 2010 International Conference on Computer Application and System Modeling (ICCASM 2010).

[13]  D. L. Simms,et al.  Normal Accidents: Living with High-Risk Technologies , 1986 .

[14]  Dai Pan,et al.  Architecture-based software reliability modeling , 2006, J. Syst. Softw..

[15]  Weixiang Liu,et al.  Research on Air Traffic Control Automatic System Software Reliability Based on Markov Chain , 2012 .

[16]  Jang-Eui Hong,et al.  Collision detection and resolution of hazard prevention actions in safety critical systems , 2016, J. Syst. Softw..

[17]  Bev Littlewood,et al.  The use of computers in safety-critical applications , 1998 .

[18]  Anil Kumar Tripathi,et al.  Reliability prediction through system modeling , 2013, SOEN.

[19]  Barbara Kordy,et al.  DAG-based attack and defense modeling: Don't miss the forest for the attack trees , 2013, Comput. Sci. Rev..

[20]  Dong Hoon Kim,et al.  Software FMEA analysis for safety-related application software , 2014 .

[21]  MengChu Zhou,et al.  Critical Scenarios and Their Identification in Parallel Railroad Level Crossing Traffic Control Systems , 2010, IEEE Transactions on Intelligent Transportation Systems.

[22]  Seetha Ramaiah Panchumarthy,et al.  An Approach to Modeling Software Safety in Safety-Critical Systems , 2009 .

[23]  J. D. Lawrence,et al.  A proposal for performing software safety hazard analysis , 1997 .

[24]  Zhao Hong,et al.  Formal security model research based on Petri-net , 2005, 2005 IEEE International Conference on Granular Computing.

[25]  C. V. Ramamoorthy,et al.  Software Reliability—Status and Perspectives , 1982, IEEE Transactions on Software Engineering.

[26]  Ben Swarup Medikonda P. Seetha Ramaiah Anu A. Gokhale,et al.  FMEA and Fault Tree based Software Safety Analysis of a Railroad Crossing Critical System , 2011 .

[27]  Bryan Dodson,et al.  Reliability Engineering Handbook , 1999 .

[28]  Luigi Portinale,et al.  Modeling and Analysis of Dependable Systems: A Probabilistic Graphical Model Perspective , 2017 .

[29]  Yiannis Papadopoulos,et al.  System Dependability Modelling and Analysis Using AADL and HiP-HOPS , 2012 .

[30]  Tadao Murata,et al.  Petri nets: Properties, analysis and applications , 1989, Proc. IEEE.

[31]  Indrajit Ray,et al.  Security Vulnerabilities in Software Systems: A Quantitative Perspective , 2005, DBSec.

[32]  Sakir Sezer,et al.  STPA-SafeSec: Safety and security analysis for cyber-physical systems , 2017, J. Inf. Secur. Appl..

[33]  Tzong-Shi Liu,et al.  FAILURE ANALYSIS FOR AN AIRBAG INFLATOR BY PETRI NETS , 1997 .

[34]  Wang Shaoping,et al.  Software reliability prediction of digital fly control system , 2000, 19th DASC. 19th Digital Avionics Systems Conference. Proceedings (Cat. No.00CH37126).

[35]  Sofiène Tahar,et al.  Formal Dependability Modeling and Analysis: A Survey , 2016, CICM.

[36]  Kee-Choon Kwon,et al.  AN ANALYSIS OF TECHNICAL SECURITY CONTROL REQUIREMENTS FOR DIGITAL I&C SYSTEMS IN NUCLEAR POWER PLANTS , 2013 .

[37]  Ing-Ray Chen,et al.  Behavior Rule Specification-Based Intrusion Detection for Safety Critical Medical Cyber Physical Systems , 2015, IEEE Transactions on Dependable and Secure Computing.

[38]  Wei-Ho Chung,et al.  Cyberphysical Security and Dependability Analysis of Digital Control Systems in Nuclear Power Plants , 2016, IEEE Transactions on Systems, Man, and Cybernetics: Systems.

[39]  Stein Haugen,et al.  Stochastic Coloured Petri Nets as a modelling language for complex Event Trees , 2014 .

[40]  G.N. Ericsson Toward a Framework for Managing Information Security for an Electric Power Utility—CIGRÉ Experiences , 2007, IEEE Transactions on Power Delivery.

[41]  Anas N. Al-Rabadi,et al.  A comparison of modified reconstructability analysis and Ashenhurst‐Curtis decomposition of Boolean functions , 2004 .

[42]  Ana Paula Cabral Seixas Costa,et al.  Information security risk analysis model using fuzzy decision theory , 2016, Int. J. Inf. Manag..

[43]  Lalit Kumar Singh,et al.  Dependability Analysis of Safety Critical Real-Time Systems by Using Petri Nets , 2018, IEEE Transactions on Control Systems Technology.

[44]  Barry W. Johnson,et al.  Dependability metrics to assess safety-critical systems , 2005, IEEE Transactions on Reliability.

[45]  Kevin Jones,et al.  A review of cyber security risk assessment methods for SCADA systems , 2016, Comput. Secur..

[46]  Raoul Velazco,et al.  A Survey on Fault Injection Techniques , 2004, Int. Arab J. Inf. Technol..

[47]  Anil Kumar Tripathi,et al.  Approach for parameter estimation in Markov model of software reliability for early prediction: a case study , 2015, IET Softw..

[48]  J. Hortal,et al.  Application of the integrated safety assessment methodology to the protection of electric systems , 1996 .

[49]  Farooq Ahmad,et al.  Modeling and analysis of departure routine in air traffic control based on Petri nets , 2014, Neural Computing and Applications.

[50]  Jung-Taek Seo,et al.  Development of Cyber-Attack Scenarios for Nuclear Power Plants Using Scenario Graphs , 2015, Int. J. Distributed Sens. Networks.

[51]  Wei Zheng,et al.  Formal model-based quantitative safety analysis using timed Coloured Petri Nets , 2018, Reliab. Eng. Syst. Saf..

[52]  Frede Blaabjerg,et al.  Transitioning to Physics-of-Failure as a Reliability Driver in Power Electronics , 2014, IEEE Journal of Emerging and Selected Topics in Power Electronics.

[53]  Reza Ebrahimi Atani,et al.  Modeling and Analysis of Reliability in Grid using Petri Nets , 2013 .

[54]  L. Terens,et al.  Reliability, availability and maintainability (RAM) of high power variable speed drive systems (VSDS) , 1998, Record of Conference Papers. IEEE Industry Applications Society 45th Annual Petroleum and Chemical Industry Conference (Cat. No.98CH36234).

[55]  Jaekwan Park,et al.  A DEVELOPMENT FRAMEWORK FOR SOFTWARE SECURITY IN NUCLEAR SAFETY SYSTEMS: INTEGRATING SECURE DEVELOPMENT AND SYSTEM SECURITY ACTIVITIES , 2014 .

[56]  Shuang-Hua Yang,et al.  SAFETY AND SECURITY CHECKING IN THE DESIGN OF INTERNET BASED CONTROL SYSTEMS , 2005 .

[57]  Guang Gong,et al.  Security Challenges in Smart-Grid Metering and Control Systems , 2013 .

[58]  Indrajit Ray,et al.  Measuring, analyzing and predicting security vulnerabilities in software systems , 2007, Comput. Secur..

[59]  Boleslaw Mikolajczak,et al.  Modeling of information systems security features with colored Petri nets , 2004, 2004 IEEE International Conference on Systems, Man and Cybernetics (IEEE Cat. No.04CH37583).

[60]  Lionel C. Briand,et al.  A UML/MARTE Model Analysis Method for Uncovering Scenarios Leading to Starvation and Deadlocks in Concurrent Systems , 2012, IEEE Transactions on Software Engineering.

[61]  William H. Sanders,et al.  Model-based evaluation: from dependability to security , 2004, IEEE Transactions on Dependable and Secure Computing.

[62]  Vitali Volovoi,et al.  Application of Petri nets to reliability prediction of occupant safety systems with partial detection and repair , 2010, Reliab. Eng. Syst. Saf..

[63]  Dmitry Podkuiko,et al.  Energy Theft in the Advanced Metering Infrastructure , 2009, CRITIS.

[64]  G.R. Burdick,et al.  Phased Mission Analysis: A Review of New Developments and An Application , 1977, IEEE Transactions on Reliability.

[65]  Yantao Song,et al.  Survey on Reliability of Power Electronic Systems , 2013, IEEE Transactions on Power Electronics.

[66]  Hermann Kopetz,et al.  Dependability: Basic Concepts and Terminology , 1992 .

[67]  Simona Bernardi,et al.  Dependability Analysis Techniques , 2013 .

[68]  Lalit Kumar Singh,et al.  Ensuring safety in design of safety critical computer based systems , 2016 .

[69]  Rudolph Frederick Stapelberg,et al.  Handbook of Reliability, Availability, Maintainability and Safety in Engineering Design , 2009 .

[70]  Takeshi Matsuoka,et al.  Overview of System Reliability Analyses for PSA , 2014 .

[71]  Xuemin Shen,et al.  Dependability Analysis of Control Center Networks in Smart Grid Using Stochastic Petri Nets , 2012, IEEE Transactions on Parallel and Distributed Systems.

[72]  Liudong Xing,et al.  Drbd: Dynamic Reliability Block Diagrams for System Reliability Modelling , 2009 .

[73]  Anil Kumar Tripathi,et al.  Early Prediction of Software Reliability: A Case Study with a Nuclear Power Plant System , 2016, Computer.

[74]  Hugo Calleja,et al.  Reliability of photovoltaic systems using seasonal mission profiles and the FIDES methodology , 2016, Microelectron. Reliab..