Claudius LinkMay 3, 2024

Through the upcoming #PapersInSystems discussion I discovered Nancy G. Leveson and her work on #SafetyEngineering and software safety through a systemic perspective

It is fascinating and feels very applicable to #cybersecurity

In their approach STAMP
(System-Theoretic Accident Model and Processes) safety is treated as a dynamic control problem rather than a failure prevention problem and especially takes emergent properties into account. (Emergent properties, are properties that are not in the summation of the individual components but "emergeā€ when the components interact)

There are a lot of touchpoints with security #ThreatModelling

Therfore cc @adamshostack
Maybe the event is interesting for you?

Discussion session: How to Perform Hazard Analysis on a "System-of-Systems" by Nancy Leveson
Monday, May 6th, 2024, 1 PM - 2 PM Eastern Time (US/Canada).

See @RuthMalan post https://mastodon.social/@RuthMalan/112248634077392391

Show threadClaudius Link

Regarding #STPA/#STAMP I still struggle with the terms and distinction between loss and hazard and how they map to #cybersecurity

The definition according tho the STPA Handbooks is

"A [ system-level] hazard is a system state or set of conditions that, together with a particular set of worst-case environmental conditions, will lead to a loss"

and how they related to the common protection goals Confidentiality, Integrity, and Availability

May 6, 2024 at 9:26amWeb