ABSTRACT: This chapter addresses the systems engineering approach to integrated functional safety and cybersecurity analysis and management regarding selected references, standards and requirements concerning critical installations and their industrial automation and control system (IACS). The objective is to mitigate the vulnerability of industrial installations that include the information technology (IT) and the operational technology (OT) to reduce relevant risks. This approach includes verifying the safety integrity level (SIL) of defined safety functions, and then to check the level obtained taking into account the security assurance level (SAL) of particular domain, such as a safety related control system (SRCS), in which given safety function is to be implemented. The SAL is determined based on a vector of fundamental requirements (FRs). The method proposed uses defined risk graphs for the individual and/or the societal risk, and relevant risk criteria, for determining the SIL required of given safety function, and probabilistic models to verify the SIL achievable for the SRCS architecture to be designed and then implemented in an industrial installation.

Previous chapter - Contents - Next chapter