@inproceedings{880448175fab475da89348324aa80ba3,
title = "Towards Interdependent Safety Security Assessments Using Bowties",
abstract = "We present a way to combine security and safety assessments using Bowtie Diagrams. Bowties model both the causes leading up to a central failure event and consequences which arise from that event, as well as barriers which impede events. Bowties have previously been used separately for security and safety assessments, but we suggest that a unified treatment in a single model can elegantly capture safety-security interdependencies of several kinds. We showcase our approach with the example of the October 2021 Facebook DNS shutdown, examining the chains of events and the interplay between the security and safety barriers which caused the outage.",
keywords = "Safety and security, Bowtie diagrams, Risk analysis",
author = "Luca Arnaboldi and David Aspinall",
year = "2022",
month = sep,
day = "7",
doi = "10.1007/978-3-031-14862-0_16",
language = "English",
isbn = "9783031148613",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
pages = "211–229",
editor = "Mario Trapp and Erwin Schoitsch and J{\'e}r{\'e}mie Guiochet and Friedemann Bitsch",
booktitle = "Computer Safety, Reliability, and Security. SAFECOMP 2022 Workshops",
edition = "1",
note = "The 41st International Conference on Computer Safety, Reliability and Security, SAFECOMP 2022 ; Conference date: 06-09-2022 Through 09-09-2022",
}