Course syllabus - Safety and Security Interplay
Scope
7.5 credits
Course code
DVA499
Valid from
Autumn semester 2024
Education level
Second cycle
Progressive Specialisation
A1F (Second cycle, has second-cycle course/s as entry requirements).
Main area(s)
Computer Science
School
School of Innovation, Design and Engineering
Ratified
2024-01-18
Literature lists
Course literature is preliminary up to 8 weeks before course start. Course literature can be valid over several semesters.
-
Articles
STPA-SafeSec: Safety and security analysis for cyber-physical systems
Journal of information security and applications, 34, 2017
From requirements to verifiable executable models using Rebeca. In Software Engineering and Formal Methods. SEFM 2020
Springer International Publishing, 2021
URL: Link
CRYSTAL Framework: Cybersecurity Assurance for Cyber-Physical Systems
Journal of Logical and Algebraic Methods in Programming. 139: 100965, 2024
URL: Link
Rebeca Handbook: Modeling and Analysis of Actor Systems from the Trench - Using Rebeca in Practice and Theory
Shalifiers Publisher, 2024
URL: Link
Reference Literature
Securing Industrial Control Systems and Safety Instrumented Systems : A Practical Guide for Safeguarding Mission and Safety Critical Systems / Jalal Bouhdada and Marco Ayala
uuuu-uuuu
ISBN: 9781801071864 LIBRIS-ID: tcq6dbh5r5lcvz7l
Miscellaneous
Standard: International Electrotechnical Commission (2019). IEC 63069:2019. Industrial-process measurement, control, and automation - Framework for functional safety and security.
Objectives
To familiarize the students with developing software systems considering safety and security requirements from the beginning to the end in the life cycle of the system focusing on standards, requirements, modeling and formal verification.
Learning outcomes
1. identify and apply standards for safety and security, and understand their interplay in a specific context,
2. specify the requirements with a focus on safety and security,
3. model relevant aspects to safety and security of software intensive systems (focus on cyber-physical systems) from requirements and
4. formally verify the models based on the safety and security logical properties.
Course content
* General Definitions.
* Standards and Regulatory Requirements.
* Processes: Software life cycle - The V model.
* Assurances.
* Modeling.
* SysML/UML.
* Formal Verification and Debugging.
* Formal Verification: Model Checking/Theorem Proving.
* Modeling the system and attacks using Actors.
* Using Model Checking for Test and Debug.
The contents will reflect the latest research topics as well as industrial practices. Guest lectures by both academic and industrial experts might be included in the course.
Specific requirements
Cybersecurity fundamentals 7.5 credits. In addition, Swedish B/Swedish 3 and English A/English 6 are required. For courses given in entirely in English exemption is made from the requirement in Swedish B/Swedish 3.
Examination
Laboratory work (LAB1), a series of laboratory exercises that continuously is presented according to instructions, 2,5 credits, examines the learning outcomes 1-4, marks Fail (U), 3, 4 or 5).
Project (PRO1), an assignment that is presented with a report and a demonstration of the project, 2 credits, examines the learning outcomes 1-4, marks Fail (U), 3, 4 or 5.
Written examination (TEN1), 3 credits, examines the learning outcomes 1-4, marks Fail (U), 3, 4 or 5.
A student who has a certificate from MDU regarding a disability has the opportunity to submit a request for supportive measures during written examinations or other forms of examination, in accordance with the Rules and Regulations for Examinations at First-cycle and Second-cycle Level at Mälardalen University (2020/1655). It is the examiner who takes decisions on any supportive measures, based on what kind of certificate is issued, and in that case which measures are to be applied.
Suspicions of attempting to deceive in examinations (cheating) are reported to the Vice-Chancellor, in accordance with the Higher Education Ordinance, and are examined by the University’s Disciplinary Board. If the Disciplinary Board considers the student to be guilty of a disciplinary offence, the Board will take a decision on disciplinary action, which will be a warning or suspension.
Grade
Pass with distinction, Pass with credit, Pass, Fail