The Model-Driven openETCS Paradigm for Secure, Safe and Certifiable Train Control Systems

Jan Peleska; Johannes Feuser; Anne Elisabeth Haxthausen

doi:10.4018/978-1-4666-1643-1.ch002

The Model-Driven openETCS Paradigm for Secure, Safe and Certifiable Train Control Systems

Jan Peleska, Johannes Feuser, Anne Elisabeth Haxthausen

University of Bremen

Research output: Chapter in Book/Report/Conference proceeding › Book chapter › Research › peer-review

Abstract

A novel approach to managing development, verification, and validation artifacts for the European Train Control System as open, publicly available items is analyzed and discussed with respect to its implications on system safety, security, and certifiability. After introducing this so-called model-driven openETCS approach, a threat analysis is performed, identifying both safety and security hazards that may be common to all model-based development paradigms for safety-critical railway control systems, or specific to the openETCS approach. In the subsequent sections state-of-the-art methods suitable to counter these threats are reviewed, and novel promising research results are described. These research results comprise domain-specific modeling, model-based code generation in combination with automated object code verification and explicit utilization of virtual machines to ensure containment of security hazards.

Original language	English
Title of host publication	Railway Safety, Reliability and Security: Technologies and System Engineering
Number of pages	31
Publisher	IGI global
Publication date	2012
Pages	22-52
Chapter	2
ISBN (Print)	9781466616431
ISBN (Electronic)	9781466616448
DOIs	https://doi.org/10.4018/978-1-4666-1643-1.ch002
Publication status	Published - 2012

Access to Document

10.4018/978-1-4666-1643-1.ch002

http://www.igi-global.com/book/railway-safety-reliability-security/61619

OpenUrl availability

Full text

Cite this

@inbook{aa61af99292f478f8596e88d0e7fd444,

title = "The Model-Driven openETCS Paradigm for Secure, Safe and Certifiable Train Control Systems",

abstract = "A novel approach to managing development, verification, and validation artifacts for the European Train Control System as open, publicly available items is analyzed and discussed with respect to its implications on system safety, security, and certifiability. After introducing this so-called model-driven openETCS approach, a threat analysis is performed, identifying both safety and security hazards that may be common to all model-based development paradigms for safety-critical railway control systems, or specific to the openETCS approach. In the subsequent sections state-of-the-art methods suitable to counter these threats are reviewed, and novel promising research results are described. These research results comprise domain-specific modeling, model-based code generation in combination with automated object code verification and explicit utilization of virtual machines to ensure containment of security hazards.",

author = "Jan Peleska and Johannes Feuser and Haxthausen, {Anne Elisabeth}",

year = "2012",

doi = "10.4018/978-1-4666-1643-1.ch002",

language = "English",

isbn = "9781466616431",

pages = "22--52",

booktitle = "Railway Safety, Reliability and Security: Technologies and System Engineering",

publisher = "IGI global",

}

TY - CHAP

T1 - The Model-Driven openETCS Paradigm for Secure, Safe and Certifiable Train Control Systems

AU - Peleska, Jan

AU - Feuser, Johannes

AU - Haxthausen, Anne Elisabeth

PY - 2012

Y1 - 2012

N2 - A novel approach to managing development, verification, and validation artifacts for the European Train Control System as open, publicly available items is analyzed and discussed with respect to its implications on system safety, security, and certifiability. After introducing this so-called model-driven openETCS approach, a threat analysis is performed, identifying both safety and security hazards that may be common to all model-based development paradigms for safety-critical railway control systems, or specific to the openETCS approach. In the subsequent sections state-of-the-art methods suitable to counter these threats are reviewed, and novel promising research results are described. These research results comprise domain-specific modeling, model-based code generation in combination with automated object code verification and explicit utilization of virtual machines to ensure containment of security hazards.

AB - A novel approach to managing development, verification, and validation artifacts for the European Train Control System as open, publicly available items is analyzed and discussed with respect to its implications on system safety, security, and certifiability. After introducing this so-called model-driven openETCS approach, a threat analysis is performed, identifying both safety and security hazards that may be common to all model-based development paradigms for safety-critical railway control systems, or specific to the openETCS approach. In the subsequent sections state-of-the-art methods suitable to counter these threats are reviewed, and novel promising research results are described. These research results comprise domain-specific modeling, model-based code generation in combination with automated object code verification and explicit utilization of virtual machines to ensure containment of security hazards.

U2 - 10.4018/978-1-4666-1643-1.ch002

DO - 10.4018/978-1-4666-1643-1.ch002

M3 - Book chapter

SN - 9781466616431

SP - 22

EP - 52

BT - Railway Safety, Reliability and Security: Technologies and System Engineering

PB - IGI global

ER -

The Model-Driven openETCS Paradigm for Secure, Safe and Certifiable Train Control Systems

Abstract

Access to Document

OpenUrl availability

Fingerprint

Cite this