Failure Mode and Effect Analysis for Cyber-Physical Systems

Bibliographic Details
Main Author: Oliveira, João
Publication Date: 2020
Other Authors: Carvalho, Gonçalo, Cabral, Bruno, Bernardino, Jorge
Format: Article
Language: eng
Source: Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
Download full: https://hdl.handle.net/10316/101312
https://doi.org/10.3390/fi12110205
Summary: Cyber-Physical Systems (CPS) are a prominent component of the modern digital transformation, which combines the dynamics of the physical processes with those of software and networks. Critical infrastructures have built-in CPS, and assessing its risk is crucial to avoid significant losses, both economic and social. As CPS are increasingly attached to the world’s main industries, these systems’ criticality depends not only on software efficiency and availability but also on cyber-security awareness. Given this, and because Failure Mode and Effect Analysis (FMEA) is one of the most effective methods to assess critical infrastructures’ risk, in this paper, we show how this method performs in the analysis of CPS threats, also exposing the main drawbacks concerning CPS risk assessment. We first propose a risk prevention analysis to the Communications-Based Train Control (CBTC) system, which involves exploiting cyber vulnerabilities, and we introduce a novel approach to the failure modes’ Risk Priority Number (RPN) estimation. We also propose how to adapt the FMEA method to the requirement of CPS risk evaluation. We applied the proposed procedure to the CBTC system use case since it is a CPS with a substantial cyber component and network data transfer.
id RCAP_1f697900a60e03f09a566370fa19ff9d
oai_identifier_str oai:estudogeral.uc.pt:10316/101312
network_acronym_str RCAP
network_name_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository_id_str https://opendoar.ac.uk/repository/7160
spelling Failure Mode and Effect Analysis for Cyber-Physical Systemscyber-physical systemsfailure mode and effect analysisrisk priority numbercommunications-based train controlCyber-Physical Systems (CPS) are a prominent component of the modern digital transformation, which combines the dynamics of the physical processes with those of software and networks. Critical infrastructures have built-in CPS, and assessing its risk is crucial to avoid significant losses, both economic and social. As CPS are increasingly attached to the world’s main industries, these systems’ criticality depends not only on software efficiency and availability but also on cyber-security awareness. Given this, and because Failure Mode and Effect Analysis (FMEA) is one of the most effective methods to assess critical infrastructures’ risk, in this paper, we show how this method performs in the analysis of CPS threats, also exposing the main drawbacks concerning CPS risk assessment. We first propose a risk prevention analysis to the Communications-Based Train Control (CBTC) system, which involves exploiting cyber vulnerabilities, and we introduce a novel approach to the failure modes’ Risk Priority Number (RPN) estimation. We also propose how to adapt the FMEA method to the requirement of CPS risk evaluation. We applied the proposed procedure to the CBTC system use case since it is a CPS with a substantial cyber component and network data transfer.2020info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articlehttps://hdl.handle.net/10316/101312https://hdl.handle.net/10316/101312https://doi.org/10.3390/fi12110205eng1999-5903Oliveira, JoãoCarvalho, GonçaloCabral, BrunoBernardino, Jorgeinfo:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2022-08-23T20:39:10Zoai:estudogeral.uc.pt:10316/101312Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-29T05:50:45.335172Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse
dc.title.none.fl_str_mv Failure Mode and Effect Analysis for Cyber-Physical Systems
title Failure Mode and Effect Analysis for Cyber-Physical Systems
spellingShingle Failure Mode and Effect Analysis for Cyber-Physical Systems
Oliveira, João
cyber-physical systems
failure mode and effect analysis
risk priority number
communications-based train control
title_short Failure Mode and Effect Analysis for Cyber-Physical Systems
title_full Failure Mode and Effect Analysis for Cyber-Physical Systems
title_fullStr Failure Mode and Effect Analysis for Cyber-Physical Systems
title_full_unstemmed Failure Mode and Effect Analysis for Cyber-Physical Systems
title_sort Failure Mode and Effect Analysis for Cyber-Physical Systems
author Oliveira, João
author_facet Oliveira, João
Carvalho, Gonçalo
Cabral, Bruno
Bernardino, Jorge
author_role author
author2 Carvalho, Gonçalo
Cabral, Bruno
Bernardino, Jorge
author2_role author
author
author
dc.contributor.author.fl_str_mv Oliveira, João
Carvalho, Gonçalo
Cabral, Bruno
Bernardino, Jorge
dc.subject.por.fl_str_mv cyber-physical systems
failure mode and effect analysis
risk priority number
communications-based train control
topic cyber-physical systems
failure mode and effect analysis
risk priority number
communications-based train control
description Cyber-Physical Systems (CPS) are a prominent component of the modern digital transformation, which combines the dynamics of the physical processes with those of software and networks. Critical infrastructures have built-in CPS, and assessing its risk is crucial to avoid significant losses, both economic and social. As CPS are increasingly attached to the world’s main industries, these systems’ criticality depends not only on software efficiency and availability but also on cyber-security awareness. Given this, and because Failure Mode and Effect Analysis (FMEA) is one of the most effective methods to assess critical infrastructures’ risk, in this paper, we show how this method performs in the analysis of CPS threats, also exposing the main drawbacks concerning CPS risk assessment. We first propose a risk prevention analysis to the Communications-Based Train Control (CBTC) system, which involves exploiting cyber vulnerabilities, and we introduce a novel approach to the failure modes’ Risk Priority Number (RPN) estimation. We also propose how to adapt the FMEA method to the requirement of CPS risk evaluation. We applied the proposed procedure to the CBTC system use case since it is a CPS with a substantial cyber component and network data transfer.
publishDate 2020
dc.date.none.fl_str_mv 2020
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv https://hdl.handle.net/10316/101312
https://hdl.handle.net/10316/101312
https://doi.org/10.3390/fi12110205
url https://hdl.handle.net/10316/101312
https://doi.org/10.3390/fi12110205
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 1999-5903
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.source.none.fl_str_mv reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron:RCAAP
instname_str FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron_str RCAAP
institution RCAAP
reponame_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
collection Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository.name.fl_str_mv Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
repository.mail.fl_str_mv info@rcaap.pt
_version_ 1833602491782004736

Similar Items