Proceedings of the

The 33rd European Safety and Reliability Conference (ESREL 2023)
3 – 8 September 2023, Southampton, UK

A Pragmatic Mission-Centric Approach to ICT Risk and Security – Autonomous Vehicles as a Case

Federico Mancini

Norwegian Defence Research Establishment (FFI), Kjeller, Norway.

ABSTRACT

Cyber security in the military domain has long been characterized by the focus on data confidentiality protection through strong system isolation and cryptography. Current warfare is more and more dependent on quick and distributed access to information, both from open and closed sources. In this setting, too much focus on reducing the risk of data leakage may lead to security solutions that, in practice, hinder access to critical information and thus reduce the actual operative effect of the Armed Forces. Additionally, as most military platforms are becoming more digitalized and interconnected, availability and integrity of steering systems should also be taking into account when securing cyber-physical systems, irrespective of their classification. This article discusses the challenge of how to integrate these concerns in a comprehensive risk management approach where trade-offs between competing security needs can be analyzed in a more systematic and traceable way.

Keywords: Risk, Metrics, Cyber security, Autonomous systems, Mission-centric security.



Download PDF