The overall objective of the project SafeSec is to improve the integrated safety and security engineering of self-adaptive systems. The project will therefore be jointly performed by the University of Ulm (UULM) and the University of Innsbruck (UIBK) to optimally integrate and benefit from the expertise of UULM in model-driven engineering of self-adaptive systems and hazard analysis, and of UIBK in security modeling and security testing. Both, UULM and UIBK, have expertise in empirical software engineering. SafeSec consists of four work packages. Work package 1 provides a systematically developed security attack modeling language for self-adaptive systems based on a new taxonomy of attacks to self-adaptive systems and the existing hazard analysis approach from UULM. Work package 2 investigates how to mine attack models from data sources like vulnerability databases and how to automatically link them to the system models and to continuously monitor relevant sources for attack model evolution. Work package 3 extends the hazard analysis approach from our previous work to a security-driven hazard analysis approach and develops a suitable model-based testing approach to dynamically validate the results of the hazard analysis. Finally, work package 4 evaluates the results of the project in context of a quadrocopter lab case as well as safe and secure development processes from the domains of aerospace and plant control.

DFG Programme Research Grants

International Connection Austria

Partner Organisation Fonds zur Förderung der wissenschaftlichen Forschung (FWF)

Cooperation Partner Professor Dr. Michael Felderer