Case study on combined validation of safety & security requirements

In the automotive domain, it is of paramount importance to ensure safety, and recently also security, of the developed products. In many cases safety and security are handled separately by independent teams. In this paper we deal with testing and validation of safety- and security-related properties of control software in the AUTOSAR architecture and show that the strict separation of those two activities is not necessary and that combining them can bring economic benefits. We demonstrate that by developing software-in-the-loop and hardware-in-the-loop testbeds and use them for both safety-and security-related testing activities. We evaluate a prototype of electric motors control software, that is currently under development by Infineon Technologies, and perform a number of tests to verify correct functionality of implemented safety measures even under the presence of attacks. The motor control software is integrated with a message authentication protocol on CAN bus. The results show, that apart from few minor problems, the implemented safety measures function correctly.