Eunbi Kim  Hyuksoo Han

10.5626/JOK.2019.46.12.1262

safety critical system hazard analysis process threat analysis process SysML diagram

In a safety-critical system, an accident may cause harm to people and the environment. Therefore, it is important to thoroughly analyze potential hazards and elicit safety requirements from the concept phase of the system to be developed. Traditionally, component failure has been considered a major hazard. However, in modern systems, software faults and failed interactions among components are other major hazards that must be considered. As wired/wireless network connection plays a major role in recent systems, cyber security has become a major system safety concern. Such threats from hackers should be considered in hazard analysis. In the past, hazard analysis in safety and threat analysis in security have been treated as independent activities. As reports about the common assets and the complementary features of both techniques have been released, combining these two analysis techniques has attracted interest in the safety area. The major focuses of this study involved the analysis techniques and the assessment methodologies. Prior studies that have combined hazard and threat analyses have not provide systematic processes that can be followed by practitioners, which is a critical inconvenience in developing safety critical systems for the field. In this paper, we propose a hazard analysis process based on SAMM that integrates threats related to safety using SysML diagrams. We applied the proposed process to a remote parking assistance system to evaluate its effectiveness.