From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security

Luca Arnaboldi; David Aspinall; Christina Kolb; Saša Radomirović

doi:10.1007/978-3-032-02018-5_7

From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security

Luca Arnaboldi^*, David Aspinall, Christina Kolb, Saša Radomirović

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.

Original language	English
Title of host publication	Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops
Subtitle of host publication	CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings
Editors	Martin Törngren, Barbara Gallina, Erwin Schoitsch, Elena Troubitsyna, Friedemann Bitsch
Publisher	Springer
Pages	88-100
Number of pages	13
ISBN (Electronic)	978-3-032-02018-5
ISBN (Print)	978-3-032-02017-8
DOIs	https://doi.org/10.1007/978-3-032-02018-5_7
Publication status	E-pub ahead of print - 22 Aug 2025
Event	Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops - Stockholm, Sweden Duration: 9 Sept 2025 → 9 Sept 2025

Publication series

Name	Lecture Notes in Computer Science
Volume	15955
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops
Country/Territory	Sweden
City	Stockholm
Period	9/09/25 → 9/09/25
Other	Co-Design of Communication, Computing and Control in Cyber-Physical Systems, CoC3CPS 2025, 20th Workshop on Dependable Smart Embedded and Cyber-Physical Systems and Systems-of-Systems, DECSoS 2025, 12th International Workshop on Next Generation of System Assurance Approaches for Critical Systems, SASSUR 2025, 4th International Workshop on Safety and Security Interaction, SENSEI 2025, 2nd International Workshop on Safety/Reliability/Trustworthiness of Intelligent Transportation Systems, SRToITS 2025 and 8th International Workshop on Artificial Intelligence Safety Engineering, WAISE 2025 held in conjunction with the 44th International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2025

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-032-02018-5_7

Cite this

Arnaboldi, L., Aspinall, D., Kolb, C., & Radomirović, S. (2025). From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. In M. Törngren, B. Gallina, E. Schoitsch, E. Troubitsyna, & F. Bitsch (Eds.), Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings (pp. 88-100). (Lecture Notes in Computer Science; Vol. 15955). Springer. Advance online publication. https://doi.org/10.1007/978-3-032-02018-5_7

Arnaboldi, Luca ; Aspinall, David ; Kolb, Christina et al. / From Bouncing Break-ins to Frictional Firewalls : Ideas About Interacting Requirements for Vehicle Safety and Security. Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. editor / Martin Törngren ; Barbara Gallina ; Erwin Schoitsch ; Elena Troubitsyna ; Friedemann Bitsch. Springer, 2025. pp. 88-100 (Lecture Notes in Computer Science).

@inproceedings{ebf80b300a3c4c49ba5e37ff1f2edc24,

title = "From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security",

abstract = "We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.",

author = "Luca Arnaboldi and David Aspinall and Christina Kolb and Sa{\v s}a Radomirovi{\'c}",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.; Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops ; Conference date: 09-09-2025 Through 09-09-2025",

year = "2025",

month = aug,

day = "22",

doi = "10.1007/978-3-032-02018-5\_7",

language = "English",

isbn = "978-3-032-02017-8",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "88--100",

editor = "Martin T{\"o}rngren and Barbara Gallina and Erwin Schoitsch and Elena Troubitsyna and Friedemann Bitsch",

booktitle = "Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops",

address = "Germany",

}

Arnaboldi, L, Aspinall, D, Kolb, C & Radomirović, S 2025, From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. in M Törngren, B Gallina, E Schoitsch, E Troubitsyna & F Bitsch (eds), Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. Lecture Notes in Computer Science, vol. 15955, Springer, pp. 88-100, Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops, Stockholm, Sweden, 9/09/25. https://doi.org/10.1007/978-3-032-02018-5_7

From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. / Arnaboldi, Luca; Aspinall, David; Kolb, Christina et al.
Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. ed. / Martin Törngren; Barbara Gallina; Erwin Schoitsch; Elena Troubitsyna; Friedemann Bitsch. Springer, 2025. p. 88-100 (Lecture Notes in Computer Science; Vol. 15955).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - From Bouncing Break-ins to Frictional Firewalls

T2 - Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops

AU - Arnaboldi, Luca

AU - Aspinall, David

AU - Kolb, Christina

AU - Radomirović, Saša

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.

PY - 2025/8/22

Y1 - 2025/8/22

N2 - We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.

AB - We explore requirement interactions related to safety and security properties with an example based on automotive braking systems, to show ideas about co-engineering trustworthy systems. We start from risk assessments TARA (Threat and Risk Assessment, ISO 21434) and HARA (Hazard Analysis and Risk Assessment, ISO 26262). These are often undertaken separately, resulting in requirements that may interact badly, for example, security features that compromise safety requirements, or sets of requirements that are impossible to satisfy together. Based on a minimal logical foundation for designing cyber-physical systems and considering requirement satisfaction across system changes, we classify several kinds of requirement interaction. These generalise the well-known case of (adverse) feature interactions; our suggestion is that understanding interactions can help during design or implementation revision cycles—even if requirements are considered without using formal methods.

UR - https://www.scopus.com/pages/publications/105014735692

U2 - 10.1007/978-3-032-02018-5_7

DO - 10.1007/978-3-032-02018-5_7

M3 - Conference contribution

AN - SCOPUS:105014735692

SN - 978-3-032-02017-8

T3 - Lecture Notes in Computer Science

SP - 88

EP - 100

BT - Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops

A2 - Törngren, Martin

A2 - Gallina, Barbara

A2 - Schoitsch, Erwin

A2 - Troubitsyna, Elena

A2 - Bitsch, Friedemann

PB - Springer

Y2 - 9 September 2025 through 9 September 2025

ER -

Arnaboldi L, Aspinall D, Kolb C, Radomirović S. From Bouncing Break-ins to Frictional Firewalls: Ideas About Interacting Requirements for Vehicle Safety and Security. In Törngren M, Gallina B, Schoitsch E, Troubitsyna E, Bitsch F, editors, Computer Safety, Reliability, and Security. SAFECOMP 2025 Workshops: CoC3CPS, DECSoS, SASSUR, SENSEI, SRToITS, and WAISE, Stockholm, Sweden, September 9, 2025, Proceedings. Springer. 2025. p. 88-100. (Lecture Notes in Computer Science). Epub 2025 Aug 22. doi: 10.1007/978-3-032-02018-5_7