[SystemSafety] Partly Off Topic: What Happens in October [No Classification]
Peter Bernard Ladkin
ladkin at causalis.com
Tue Oct 18 14:04:29 CEST 2016
On 2016-10-18 13:11 , Barnes, Robert A (NNPPI) wrote:
> This is quite a specific example and I'd argue that, if the security case rests on a single point of
> failure in non-assured software, something has gone horribly wrong in the design and development of this
> system!
Well, sure. I'm sure Apple would agree. That observed, what's the answer to my question?
Supply chain assurance is one of the three biggies in HMG's cybersecurity program, according to the
Chief Scientific Advisor, Anthony Finkelstein (the other two are physics of computation, and
behavioural science). Part of that - most of that - is ensuring you don't assure inadequate SW.
The reality in IACS is more like what was described for NPPs in last October's Chatham House report
which I referenced earlier this year.
> Defence in depth has become an accepted principle in safety engineering, and it is just as valid in
> security.
And it's been a overt principle of NPPs since the beginning. It still doesn't hinder situations such
as described in the Chatham House report.
PBL
Prof. Peter Bernard Ladkin, Bielefeld, Germany
MoreInCommon
Je suis Charlie
Tel+msg +49 (0)521 880 7319 www.rvs-bi.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 163 bytes
Desc: OpenPGP digital signature
URL: <https://lists.techfak.uni-bielefeld.de/mailman/private/systemsafety/attachments/20161018/5e48d9fe/attachment-0001.pgp>
More information about the systemsafety
mailing list