From Safety Cases to Security Cases

Robert David Alexander; Richard David Hawkins; Timothy Patrick Kelly

From Safety Cases to Security Cases

Robert David Alexander, Richard David Hawkins, Timothy Patrick Kelly

Computer Science

Research output: Contribution to conference › Paper

Abstract

Assurance cases are widely used in the safely domain, where they pro-vide a way to justify the safety of a system and render that justification open to review. Assurance cases have not been widely used in security, but there is guid-ance available and there have been some promising experiments. There are a number of differences between safety and security which have implications for how we create security cases, but they do not appear to be insurmountable. It appears that the process of creating a security case is compatible with typical evaluation processes, and will have additional benefits in terms of training and corporate memory. In this paper we discuss some of the implications and chal-lenges of applying the practice of assurance case construction from the safety domain to the security domain.

Original language	English
Publication status	Published - Feb 2017

Access to Document

SSS '17 Alexander Hawkins and Kelly
Copyright the University of York, 2017. Standard copyright licence.
Final published version, 388 KBLicence: Other

Cite this

@conference{34e2e1977c024863b1b1c30fc9723c27,

title = "From Safety Cases to Security Cases",

abstract = "Assurance cases are widely used in the safely domain, where they pro-vide a way to justify the safety of a system and render that justification open to review. Assurance cases have not been widely used in security, but there is guid-ance available and there have been some promising experiments. There are a number of differences between safety and security which have implications for how we create security cases, but they do not appear to be insurmountable. It appears that the process of creating a security case is compatible with typical evaluation processes, and will have additional benefits in terms of training and corporate memory. In this paper we discuss some of the implications and chal-lenges of applying the practice of assurance case construction from the safety domain to the security domain.",

author = "Alexander, {Robert David} and Hawkins, {Richard David} and Kelly, {Timothy Patrick}",

year = "2017",

month = feb,

language = "English",

}

TY - CONF

T1 - From Safety Cases to Security Cases

AU - Alexander, Robert David

AU - Hawkins, Richard David

AU - Kelly, Timothy Patrick

PY - 2017/2

Y1 - 2017/2

N2 - Assurance cases are widely used in the safely domain, where they pro-vide a way to justify the safety of a system and render that justification open to review. Assurance cases have not been widely used in security, but there is guid-ance available and there have been some promising experiments. There are a number of differences between safety and security which have implications for how we create security cases, but they do not appear to be insurmountable. It appears that the process of creating a security case is compatible with typical evaluation processes, and will have additional benefits in terms of training and corporate memory. In this paper we discuss some of the implications and chal-lenges of applying the practice of assurance case construction from the safety domain to the security domain.

AB - Assurance cases are widely used in the safely domain, where they pro-vide a way to justify the safety of a system and render that justification open to review. Assurance cases have not been widely used in security, but there is guid-ance available and there have been some promising experiments. There are a number of differences between safety and security which have implications for how we create security cases, but they do not appear to be insurmountable. It appears that the process of creating a security case is compatible with typical evaluation processes, and will have additional benefits in terms of training and corporate memory. In this paper we discuss some of the implications and chal-lenges of applying the practice of assurance case construction from the safety domain to the security domain.

M3 - Paper

ER -