Abstract
In the paper we present an approach to the architectural trust case development for DRIVE, the IT infrastructure supporting the processes of drugs distribution and application. The objectives of DRIVE included safer and cheaper drugs distribution and application. A trust case represents an argument supporting the trustworthiness of the system. It is decomposed into claims that postulate some trust related properties. Claims differ concerning their abstraction level and scope. To express a claim we need a language and a conceptual model. We used UML to represent claim models and related context models of the trust case. To specify claims we introduced Claim Definition Language – CDL. The paper gives a deeper description of the above concepts and illustrates how they were applied in practice.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Defence Standard 00-56, http://wheelie.tees.ac.uk/hazop/html/56.htm
EU EUREKA SHIP (Safety of Hazardous Industrial Processes) Project, http://www.csr.city.ac.uk/csr_city/projects/ship/ship.html
Safety Case Assessment Criteria, http://www.hse.gov.uk/railway/criteria/
Common Methodology for Information Technology Security Evaluation, version 1.0 (1999)
Common Criteria for Information Technology Security Evaluation version 2.1 (1999) (Parts 1,2,3)
ISO/IEC Information Security Management (2000)
Eriksson, H.-E., Penker, M.: Business Modeling with UML. J. Wiley, Chichester (2000)
DRIVE D11.1-3 –Trust Case for DRIVE, D11.1-3, version 1.1 (January 2003)
Microsoft Visio 2002 Professional (2002)
Górski, J., Jaraębowicz, A.: Detecting defects in object oriented diagrams using UML-HAZOP, Found of Comp. and Decesion Sciences 27(4) (2002)
DRIVE D11.4 – UML-HAZOP, D11.4, version 1.1 (January 2003)
Wilson, S.P., Kelly, T.P., McDermid, J.A.: Safety Case Development: Current Practice, Future Prospects
Adlard Safety Case Devolopement Manual, Adelard (1998)
Kelly, T.: Arguing Safety A Systematic Approach to Managing Safety Cases (1998). PhD Thesis, University of York, UK, YCST 99/05 (1998), available at http://www.cs.york.ac.uk/ftpdir/reports/YCST-99-05.ps.gz
ASCE (Adlard Safety Case Editor) homepage, http://www.adelard.com/software/asce
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Górski, J., Jarzêbowicz, A., Leszczyna, R., Miler, J., Olszewski, M. (2003). An Approach to Trust Case Development. In: Anderson, S., Felici, M., Littlewood, B. (eds) Computer Safety, Reliability, and Security. SAFECOMP 2003. Lecture Notes in Computer Science, vol 2788. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-39878-3_16
Download citation
DOI: https://doi.org/10.1007/978-3-540-39878-3_16
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-20126-7
Online ISBN: 978-3-540-39878-3
eBook Packages: Springer Book Archive