Today's systems are being built to connect to public or semi-public networks, are able to communicate with other systems, e.g., in the context of Internet-of-Things (IoT), involve multiple stakeholders, have dynamic system reconfigurations, and operate in increasingly unpredictable environments. In such complex systems, assuring safety and security in a continuous and joint effort is a major challenge, not the least due to the increasing number of attack surfaces arising from the increased connectivity. In this paper we present an approach that aims to bridge the gap between safety and security engineering. The potential of the approach is illustrated on the example of E-gas system, discussing the cases when unintentional faults as well as malicious attacks are taken into consideration when assuring safety of the described system.

Internet of Things (IoT) Ambient Assisted Living (AAL) systems are expected to enable the next generation healthcare, in the era of increased number of elderly and disabled people. IoT AAL is assumed to enable healthcare in the comfort of patients’ own homes, and keep the cost of the healthcare within economically acceptable range. In this paper, we focus on a health monitoring system consisting of a number of sensing devices, cloud services, remote hospital offices connected via communication infrastructure (e.g., WiFi, cellular networks, etc.) aiming at providing safe, secure, reliable and time-efficient services. We identify challenges related to guaranteeing these properties and provide a brief description of our approach that enables reasoning about reliable and time-efficient communication, and outline an approach for risk analysis of safety and security properties.

In this paper we present a modeling and analysis tool for service-oriented systems. The tool enables graphical modeling of service-based systems, within the resource-aware timed behavioral language Remes, as well as a textual system description. We have developed a graphical environment where services can be composed as desired by the user, together with a textual service composition interface in which compositions can also be checked for correctness. We also provide automated traceability between the two design interfaces, which results in a tool that enhances the potential of system design by intuitive service manipulation. The paper presents the design principles, infrastructure, and the user interface of our tool.