Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications

• Published in: Critical Information Infrastructures Security Vol. 10242; pp. 50 - 62
• Main Authors: Chockalingam, Sabarathinam, Hadžiosmanović, Dina, Pieters, Wolter, Teixeira, André, van Gelder, Pieter
• Format: Book Chapter
• Language: English
• Published: Switzerland Springer International Publishing AG 2017; Springer International Publishing
• Series: Lecture Notes in Computer Science
• Subjects: Integrated safety and security risk assessment; Risk analysis; Risk evaluation; Risk identification; Safety risk assessment; Security risk assessment
• ISBN: 3319713671; 9783319713670
• ISSN: 0302-9743; 1611-3349
• DOI: 10.1007/978-3-319-71368-7_5

Over the last years, we have seen several security incidents that compromised system safety, of which some caused physical harm to people. Meanwhile, various risk assessment methods have been developed that integrate safety and security, and these could help to address the corresponding threats by implementing suitable risk treatment plans. However, an overarching overview of these methods, systematizing the characteristics of such methods, is missing. In this paper, we conduct a systematic literature review, and identify 7 integrated safety and security risk assessment methods. We analyze these methods based on 5 different criteria, and identify key characteristics and applications. A key outcome is the distinction between sequential and non-sequential integration of safety and security, related to the order in which safety and security risks are assessed. This study provides a basis for developing more effective integrated safety and security risk assessment methods in the future.