[SystemSafety] [EC 61508 and cybersecurity
Andrew Banks
andrew at andrewbanks.com
Thu Jun 4 14:12:25 CEST 2015
I also agree with both Chris and Christopher, but would go a step further.
I agree with much that Chris says but the problem is that the high level
standards bodies often have little practical day to day experience
at the interface between security and safety - indeed most industries are
just waking up to the possibilities with ISIL in control of several
refineries and ATM towers (plus associated engineers).
Standards bodies seem to have little understanding of what their existing
portfolio covers. and seem to want to create new standards, including much
the same material as existing standards, rather than adopt their own
existing standards.
In the case of (the latest buzz-word) "cyber security" the ISO 270xx family
covers just about every eventuality. but just doesn't include the buzz-word.
In the same way that ISO 26262 re-covers plenty of material from ISO
15288/12207 (etc)
I guess it just proves the old joke: The great thing about standards. there
are plenty to choose from!
Regards
Andrew
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.techfak.uni-bielefeld.de/mailman/private/systemsafety/attachments/20150604/63be61a0/attachment.html>
More information about the systemsafety
mailing list