Abstract
AbstractSecurity Assurance Cases (SAC) are a form of structured argumentation used to reason about the security properties of a system. After the successful adoption of assurance cases for safety, SAC are getting significant traction in recent years, especially in safety-critical industries (e.g., automotive), where there is an increasing pressure to be compliant with several security standards and regulations. Accordingly, research in the field of SAC has flourished in the past decade, with different approaches being investigated. In an effort to systematize this active field of research, we conducted a systematic literature review (SLR) of the existing academic studies on SAC. Our review resulted in an in-depth analysis and comparison of 51 papers. Our results indicate that, while there are numerous papers discussing the importance of SAC and their usage scenarios, the literature is still immature with respect to concrete support for practitioners on how to build and maintain a SAC. More importantly, even though some methodologies are available, their validation and tool support is still lacking.
Publisher
Springer Science and Business Media LLC
Cited by
10 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. A PRISMA-driven systematic mapping study on system assurance weakeners;Information and Software Technology;2024-11
2. Managing security evidence in safety-critical organizations;Journal of Systems and Software;2024-08
3. Increasing the Confidence in Security Assurance Cases using Game Theory;Proceedings of the 19th International Conference on Availability, Reliability and Security;2024-07-30
4. Cybersecurity Pathways Towards CE-Certified Autonomous Forestry Machines;2024 54th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops (DSN-W);2024-06-24
5. MMINT-A: A framework for model-based safety assurance;Science of Computer Programming;2024-01