A Process Framework Combining Safety and Security in Practice

McCaffery, Fergal
Özcan Top, Özden
Treacy, Ceara
Paul, Pangkaj
Loane, John
Callan-Crilly, Jennifer
McMahon, Arthur
Cyber-Physical-Systems provide huge potential for delivering highly effective solutions for multiple safety critical domains such as health, automotive, sports etc. Given the complexity of cyber physical systems, it is important to ensure the safety and security of such systems. Failure of such systems could result in potential harm to people and temporary downtime of important infrastructures with detrimental consequences for industry and society. This article describes a safety and security framework that could be implemented when building cyber physical systems for the safety critical medical device domain. We also provide details of how this framework was implemented in an organisation, STATSports Group, which develops cyber physical systems for performance monitoring of elite athletes to the specification required.
Systems, Software and Services Process Improvement. EuroSPI 2018. Communications in Computer and Information Science


A hybrid assessment approach for medical device software development companies
Özcan Top, Özden (2018-07-01)
Medical device software development organizations are bound by regulatory requirements and constraints to ensure that developed medical devices will not harm patients. Medical devices have to be treated as complete systems and be evaluated in this manner. Instead of manufacturers having to ensure compliance to various regulatory standards individually, the authors previously developed a medical device software process assessment framework called MDevSPICE((R)) that integrates the regulatory requirements fro...
A Lightweight Software Process Assessment Approach Based on MDevSPICE((R)) for Medical Device Development Domain
Özcan Top, Özden (2017-09-04)
Software process improvement is challenging in the medical device development domain, as significant constraints exist such as ensuring conformance to regulations while improving software quality. The regulations that medical products are subject to may be overwhelming for organisations as a variety of international standards have to be implemented in order to address regulatory compliance. MDevSPICE® is a framework developed to overcome this challenge by integrating different international regulatory stand...
A Case for Societal Digital Security Culture
BEN OTHMANE, Lotfi; WEFFERS, Harold; RANCHAL, Rohit; Angın, Pelin; BHARGAVA, Bharat; MOHAMAD, Mohd M (2013-07-10)
Information and communication technology systems, such as remote health care monitoring and smart mobility applications, have become indispensable parts of our lives. Security vulnerabilities in these systems could cause financial losses, privacy/safety compromises, and operational interruptions. This paper demonstrates through examples, that technical security solutions for these information systems, alone, are not sufficient to protect individuals and their assets from attacks. It proposes to complement (...
A system approach to occupational health and safety management
Gözüyılmaz, Cem; Esin, Alp; Department of Mechanical Engineering (2003)
In this thesis, methods used at present in occupational health and safety management are analyzed and a model safety management system is developed. History, development and recent occupational safety regulations in the United States of America and European Union are introduced to give a sight on this subject in developed countries. The suggested model is evaluated with work accident data taken from a company and hazard and risk analysis methods are used to investigate these accidents. Preventive measures t...
A process assessment model for big data analytics
Gökalp, Ebru; Gökalp, Mert Onuralp; Kayabay, Kerem; Gökalp, Selin; Koçyiğit, Altan; Eren, Pekin Erhan (2022-03-01)
Big data analytics (BDA) grasp the potential of generating valuable insights and empowering businesses to support their strategic decision-making. However, although organizations are aware of BDAs’ potential opportunities, they face challenges to satisfy the BDA-specific processes and integrate them into their daily software development lifecycle. Process capability/ maturity assessment models are used to assist organizations in assessing and realizing the value of emerging capabilities and technologies. Ho...
Citation Formats
F. McCaffery et al., “A Process Framework Combining Safety and Security in Practice,” 2018, vol. 896, Accessed: 00, 2021. [Online]. Available: http://dx.doi.org/10.1007/978-3-319-97925-0_14.