You are required to read and agree to the below before accessing a full-text version of an article in the IDE article repository.

The full-text document you are about to access is subject to national and international copyright laws. In most cases (but not necessarily all) the consequence is that personal use is allowed given that the copyright owner is duly acknowledged and respected. All other use (typically) require an explicit permission (often in writing) by the copyright owner.

For the reports in this repository we specifically note that

  • the use of articles under IEEE copyright is governed by the IEEE copyright policy (available at
  • the use of articles under ACM copyright is governed by the ACM copyright policy (available at
  • technical reports and other articles issued by M‰lardalen University is free for personal use. For other use, the explicit consent of the authors is required
  • in other cases, please contact the copyright owner for detailed information

By accepting I agree to acknowledge and respect the rights of the copyright owner of the document I am about to access.

If you are in doubt, feel free to contact

Making SafeConcert Security-informed to Enable Multi-concern Modelling

Publication Type:

Conference/Workshop Paper


30th European Safety and Reliability Conference


Research Publishing Services


Connected dependable embedded systems communicate over networks to provide their services. Application of such systems include space, process automation, automotive etc. In such complex systems, safety and security assurance requires co-engineering, co-analysis and co-assessment approaches to enable a joint view and also manage tradeoffs between them. Nevertheless, such multi-concern assurance is challenging due to the increased connectivity resulting into increased attack surfaces as well as lack of a common language for describing the security concepts and their relation to safety concepts. For instance, a demonstration of security attacks in space domain, automotive, and real life attacks in industrial control system domain highlights the needs of security-informed engineering and assurance processes of such systems. The SafeConcert metamodel conceptualises dependability, with focus on safety, and is implemented as the dependability profile of CHESSML (CHESS Modelling Language). CHESS is a methodology and an open source toolset. The toolset implements CHESSML for high-integrity component-based systems engineering. By implementing CHESSML, the CHESS toolset offers modelling capabilities at different abstraction levels as well as qualitative and quantitative analysis techniques. In this paper, we conceptualise security and extend SafeConcert meta-model to enable multi-concern modelling. Then, we use the extended SafeConcert to model a simplified but functionally realist Attitude Control System (ACS) to show its adequacy for expressing essential concepts as per the ECSS (European Cooperation for Space Standardization) standards series. Finally, we draw our conclusion and future work.


author = {Barbara Gallina and Zulqarnain Haider},
title = {Making SafeConcert Security-informed to Enable Multi-concern Modelling },
month = {November},
year = {2020},
booktitle = {30th European Safety and Reliability Conference},
publisher = {Research Publishing Services},
url = {}