8. What is it about ?
What is functional safety?
The definition of IEC 61508 tells us that this is a subset of the overall safety related to the equipment or installation concerned and its control system, which depends on the correct operation of the systems Electrical / Electronic / Programmable Electronics related to safety and other external risk reduction devices.
Many specifications now refer to the standards of IEC 61508, and this is not always relevant. As a result, it is necessary for automation teams to have to develop safety systems alone, whereas these systems intervene transversally in the overall risk reduction strategy of an industrial installation or an infrastructure.
The series of standards from IEC 61508 answers the following questions:
Through fundamental concepts:
These standards constitute a repository for organization, evaluation and technical requirements that can be derived into a private and non-regulatory certification framework.à travers des concepts fondamentaux :
.Why is cyber security?
Vulnerability analyzes of industrial networks (source RISI confirmed by the National Agency for the Security of Information Systems - ANSSI) shows that the origin of security incidents is as follows:
Moreover, the highest cyber attacks are recorded in the following sectors (in descending order and for those representing more than 5% of attacks):
We can highlight the characteristic features of industrial computer systems that are important constraints for the development of risk reduction strategies.
Risk: Risks faced by systems in use with process equipment (automation) are relatively stable over time, and risk analyzes must be taken only when the system is modified. The risks faced by tertiary-type systems are unstable and change daily. The probability of an attack should be considered equal to 1 as soon as a vulnerability exists.
The system: the global system (incorporating telecommunication and energy supply operators) is dynamic. An isolated operator is not able to analyze the dependencies and is therefore not able to understand the global problems that arise.
The safety of the gigantic: The models are necessarily incomplete and the scaling is not representative because of the simplifying assumptions that are emitted. Emerging properties are unknown, which requires predicting the unknown component.
Mechanics of incidents: In functional safety, common modes are rarely dominant. If this proves to be the case, this would reveal a particularly weak design. In computer security, the common mode is precisely the point where the attack will carry in most cases. The effects of incidents are characterized by cascade linkages aggravated by external systemic dependencies such as telecommunication networks and energy supply.