Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems

  • Alejandra RuizEmail author
  • Barbara Gallina
  • Jose Luis de la Vara
  • Silvia Mazzini
  • Huáscar Espinoza
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 9923)


Unlike practices in electrical and mechanical equipment engineering, Cyber-Physical Systems (CPS) do not have a set of standardized and harmonized practices for assurance and certification that ensures safe, secure and reliable operation with typical software and hardware architectures. This paper presents a recent initiative called AMASS (Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems) to promote harmonization, reuse and automation of labour-intensive certification-oriented activities via using model-based approaches and incremental techniques. AMASS will develop an integrated and holistic approach, a supporting tool ecosystem and a self-sustainable community for assurance and certification of CPS. The approach will be driven by architectural decisions (fully compatible with standards, e.g. AUTOSAR and IMA), including multiple assurance concerns such as safety, security and reliability. AMASS will support seamless interoperability between assurance/certification and engineering activities along with third-party activities (external assessments, supplier assurance). The ultimate aim is to lower certification costs in face of rapidly changing product features and market needs.


Assurance Safety Security Certification System architecture Reuse Seamless interoperability 


  1. 1.
    AMASS: ECSEL Project (Architecture-Driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems).
  2. 2.
    OPENCOSS: FP7 Project (Open Platform for EvolutioNary Certification of Safety-Critical Systems).
  3. 3.
    SafeCer: ARTEMIS Project (Safety Certification of Software-Intensive Systems with Reusable Components).
  4. 4.
    Denney, E., Pai, G.: A formal basis for safety case patterns. In: Proceedings of the 32nd International Conference on Computer Safety, Reliability and Security (SafeComp 2013), Toulouse, France, September 2013Google Scholar
  5. 5.
    Rushby, J.: Noninterference, transitivity, and channel-control security policies. Technical report SRI-CSL-92-02, December 1992Google Scholar
  6. 6.
    Cimatti, A., Dorigatti, M., Tonetta, S.: OCRA: A tool for checking the refinement of temporal contracts. In: ASE 2013, pp. 702–705 (2013)Google Scholar
  7. 7.
    Bock, H.-H., Braband, J., Milius, B., Schäbe, H.: Towards an IT security protection profile for safety-related communication in railway automation. In: Ortmeier, F., Lipaczewski, M. (eds.) SAFECOMP 2012. LNCS, vol. 7612, pp. 137–148. Springer, Heidelberg (2012)CrossRefGoogle Scholar
  8. 8.
  9. 9.
    Born, M., Favaro, J., Winkler, M., Heidt, L., Boulanger, A.: Integrated design and evaluation of safety and security in automotive system development. In: Proceedings of VDA SYS 2015, 15–16 July 2015, Berlin (2015)Google Scholar
  10. 10.
    Baldovin, A., Zovi, A., Nelissen, G., Puri, S.: The CONCERTO methodology for model-based development of the avionics software. In: Proceedings of the ADA Europe Conference 2015, June 2015, Madrid (2015)Google Scholar
  11. 11.
    Open Services for Lifecycle Collaboration (OSLC).
  12. 12.
    Gallina, B., Szatmári, Z.: Ontology-based identification of commonalities and variabilities among safety processes. In: Abrahamsson, P., et al. (eds.) PROFES 2015. LNCS, vol. 9459, pp. 182–189. Springer, Heidelberg (2015). doi: 10.1007/978-3-319-26844-6_13 Google Scholar

Copyright information

© Springer International Publishing Switzerland 2016

Authors and Affiliations

  • Alejandra Ruiz
    • 1
    Email author
  • Barbara Gallina
    • 2
  • Jose Luis de la Vara
    • 3
  • Silvia Mazzini
    • 4
  • Huáscar Espinoza
    • 1
  1. 1.ICT DivisionTECNALIADerioSpain
  2. 2.MDH UniversityVästeråsSweden
  3. 3.Universidad Carlos III de MadridMadridSpain
  4. 4.INTECSPisaItaly

Personalised recommendations