Floor Koornneef Coen van Gulijk (Eds.) 7 3 Computer Safety, 3 9 S C Reliability, and Security N L 34th International Conference, SAFECOMP 2015 Delft, The Netherlands, September 23–25, 2015 Proceedings 123 Lecture Notes in Computer Science 9337 Commenced Publication in 1973 Founding and Former Series Editors: Gerhard Goos, Juris Hartmanis, and Jan van Leeuwen Editorial Board David Hutchison Lancaster University, Lancaster, UK Takeo Kanade Carnegie Mellon University, Pittsburgh, PA, USA Josef Kittler University of Surrey, Guildford, UK Jon M. Kleinberg Cornell University, Ithaca, NY, USA Friedemann Mattern ETH Zurich, Zürich, Switzerland John C. Mitchell Stanford University, Stanford, CA, USA Moni Naor Weizmann Institute of Science, Rehovot, Israel C. Pandu Rangan Indian Institute of Technology, Madras, India Bernhard Steffen TU Dortmund University, Dortmund, Germany Demetri Terzopoulos University of California, Los Angeles, CA, USA Doug Tygar University of California, Berkeley, CA, USA Gerhard Weikum Max Planck Institute for Informatics, Saarbrücken, Germany More information about this series at http://www.springer.com/series/7408 Floor Koornneef Coen van Gulijk (Eds.) (cid:129) Computer Safety, Reliability, and Security 34th International Conference, SAFECOMP 2015 – Delft, The Netherlands, September 23 25, 2015 Proceedings 123 Editors Floor Koornneef CoenvanGulijk University of Technology University of Huddersfield Delft Huddersfield TheNetherlands UK ISSN 0302-9743 ISSN 1611-3349 (electronic) Lecture Notesin Computer Science ISBN 978-3-319-24254-5 ISBN978-3-319-24255-2 (eBook) DOI 10.1007/978-3-319-24255-2 LibraryofCongressControlNumber:2015948709 LNCSSublibrary:SL2–ProgrammingandSoftwareEngineering SpringerChamHeidelbergNewYorkDordrechtLondon ©SpringerInternationalPublishingSwitzerland2015 Thisworkissubjecttocopyright.AllrightsarereservedbythePublisher,whetherthewholeorpartofthe material is concerned, specifically the rights of translation, reprinting, reuse of illustrations, recitation, broadcasting, reproduction on microfilms or in any other physical way, and transmission or information storageandretrieval,electronicadaptation,computersoftware,orbysimilarordissimilarmethodologynow knownorhereafterdeveloped. Theuseofgeneraldescriptivenames,registerednames,trademarks,servicemarks,etc.inthispublication doesnotimply,evenintheabsenceofaspecificstatement,thatsuchnamesareexemptfromtherelevant protectivelawsandregulationsandthereforefreeforgeneraluse. Thepublisher,theauthorsandtheeditorsaresafetoassumethattheadviceandinformationinthisbookare believedtobetrueandaccurateatthedateofpublication.Neitherthepublishernortheauthorsortheeditors give a warranty, express or implied, with respect to the material contained herein or for any errors or omissionsthatmayhavebeenmade. Printedonacid-freepaper SpringerInternationalPublishingAGSwitzerlandispartofSpringerScience+BusinessMedia (www.springer.com) Preface With some pride, we present to you the proceedings of the 34th International Con- ferenceonComputerSafety,Reliability,andSecurity,SAFECOMP2015,heldatDelft UniversityofTechnologyduring23–25September2015.SAFECOMPhasbecomean excellent and high-quality platform for exchanging ideas between industry and aca- demia about safety considerations in programmable industrial systems. International collaboration constitutes an important success factor for conferences such as these. This volume contains contributions from Austria, Brazil, Finland, France, Germany, Iran, Ireland, Italy, the Netherlands, Spain, Sweden, UK, and USA. In the same spirit, the SAFECOMP Program Chair is shared by Delft University of Technology in the Netherlands and the University of Huddersfield in the UK. The34thedition ofSAFECOMPfocusedonthechallenges arisingfrom networked multi-actor systems for delivery of mission-critical services. Such services are expandingrapidlyinalldomainsoflife.Societyhas,therefore,becomeveryvulnerable to breaches in delivery of service, thus imposing serious risks to life and limb of people. This year’s call for papers focused on assured connectivity. This put the emphasisonpapers thatfocusonconnectivityofsystemsandsoftware applicationsto support that connectivity. Assured connectivity is important in the three major themes that emerged from the papers accepted for the conference: transport systems, medical systems, and security. The conference program was designed accordingly. The conference started with a keynote address on communication networks by Andrey Nikishin, Director of Special Projects and Future Technologies of Kaspersky Lab.Thesubsequentsessionsregardedautomotivesystemsfromvariousperspectives. Transport systems have always been heavily dependent on the safety of computer systems. The application of computers in safety-related critical systems is pivotal for thesmoothoperationofcriticalinfrastructures.Thoughthereismuchemphasisonthe ISO 26262 standard for road transport, human factors, technical systems, and flight systems are treated in this year’s SAFECOMP. The second day was devoted to medical technology systems and assurance. The keynote address is by Cor Kalkman, anesthesiologist at Utrecht University Medical Center. Medical systems are strongly interconnected and are critical almost by definition. Thethemeofthethirddaywassecurityandsafety.ThekeynoteaddresswasbyEric Luiijf, principal consultant C(I)IP&Cyber Ops at TNO, the Netherlands, and it dis- cussed industrial security. Protection from security attacks and cyber security are a necessity in today’s systems, requiring attention and integration with safety critical systems. Here, the concept of an intelligent adversary in critical infrastructures adds complexity in the design of safe systems. Somepapersfocusonthedevelopmentofnewmethodsratherthanindustry-related themes. These papers are placed in separate sessions, each of which is treated on a VI Preface separate day: error detection on the first day, safety cases on the second, and pro- gramming and compiling on the third. The reviewing and selection of papers is a careful process, which depends on the collaborationofmanyindividuals.Firstofallitdependsonauthorswillingtosubmita paper to the evaluation process. This year 33 papers were accepted out of 104 sub- missions.Wethankallauthorsfortheirsubmissionsandwouldencourageallauthors, particularly also the ones that were not accepted in SAFECOMP 2015, to consider SAFECOMP 2016 for publishing their papers. A team of 66 active International Pro- gram Committee members performed peer reviews, at least three per paper, and the InternationalProgramCommitteedecidedonwhichpaperstoacceptonApril15atthe University of Huddersfield. The quality and success of the SAFECOMP conference depends on the readiness and willingness to participate in the reviewing and selection process.Wethankeveryonefortheireffortsonthis.EWICSTC7hasprovidedthestable backgroundforSAFECOMPsinceitsinceptionin1979.WethankFrancescaSaglietti, inherrole as chair for EWICS TC7, for the continued supportfrom EWICS TC7. This conference was flanked by several workshops on safety and security consid- erations inprogrammableindustrialsystemsandcritical infrastructures. Theacronyms for these workshops are: ASSURE, DECSoS, ISSE, ReSA4CI, and SASSUR. What these acronyms mean and the proceedings of these workshops can be found in LNCS volume 9338. Ithasbeenthehonorandpleasureoftheprogramchairstoworkwithateamofsuch dedicated individuals. We thank the authors, the reviewers, the International Program Committee, EWICS TC7 members, and the Local Organizing Committee for their pleasant cooperation. We would also like to thank prior organizers of SAFECOMP, Andrea Bondavelli, Andrea Ceccarelli, Friedeman Bitsch, and Jérémie Guiochet, for sharing their experience. We also thank Saba Chockalingam and Yamin Huang for their contribution in formatting and completing the proceedings. Last, but not least, we want to thank you, the participants at this year’s SAFECOMP. We hope you enjoyed an interesting conference and a pleasant stay in Delft! September 2015 Floor Koornneef Coen van Gulijk Organization Committee EWICS TC7 Chair Francesca Saglietti University of Erlangen-Nuremberg, Germany General Chair Pieter van Gelder Delft University of Technology, the Netherlands Program Co-chairs Floor Koornneef Delft University of Technology, the Netherlands Coen van Gulijk University of Huddersfield, UK Workshop Chair Frank Ortmeier Otto-von-Guericke-Universität Magdeburg, Germany Finance Chair Erika van Verseveld Delft University of Technology, the Netherlands Publicity Chair Sandra Koreman schetsboek.com, the Netherlands Local Organizing Chair Genserik Reniers Delft University of Technology, the Netherlands Bas de Mol Academic Medical Center, the Netherlands Ginny Ruiter Delft University of Technology, the Netherlands Marie-Louise Verhangen Delft University of Technology, the Netherlands Larissa Mikhailovaa LASEMN R&C, The Netherlands International Program Committee Stuart Anderson University of Edinburgh, UK Jan van den Berg Delft University of Technology, the Netherlands Friedemann Bitsch Thales Transportation Systems GmbH, Germany Peter Bishop City University London and ADELARD, UK Robin Bloomfield ADELARD, London, UK Sandro Bologna Associazione Italiana Esperti in Infrastrutture Critiche (AIIC), Italy Andrea Bondavalli University of Florence, Italy VIII Organization Jens Braband Technische Universität Braunschweig, Germany Francesco Brancati Resiltech S.R.L., Italy Frances Brazier Delft University of Technology, the Netherlands Nick Chozos ADELARD, London, UK Peter Daniel EWICS, UK Felicita Di Giandomenico ISTI-CNR, Italy Geoff Duke LifeScan Scotland Ltd, UK Sherman Eagles SoftwareCPR, LLC, USA Wolfgang Ehrenberger Hochschule Fulda - University of Applied Sciences, Germany Massimo Felici HP Lab., UK Roman Fiedler AIT Austrian Institute of Technology, Austria Francesco Flammini Ansaldo STS, Italy, University Federico II of Naples, Italy Pieter van Gelder Delft University of Technology, the Netherlands Janusz Górski Gdansk University of Technology, Poland Jérémie Guiochet LAAS, CNRS, France Coen van Gulijk University of Huddersfield, UK Wolfgang Halang Fernuniversität Hagen, Germany Maritta Heisel University Duisburg-Essen, Germany Chris Johnson University of Glasgow, UK Erland Johnson Chalmers University, Stockholm, Sweden Mohamed Kaaniche LAAS, CNRS, France Karama Kanoun LAAS, CNRS, France Johan Karlsson Chalmers University of Technology, Sweden Tim Kelly University of York, UK John Knight University of Virginia, USA Phil Koopman Carnegie Mellon University, USA Floor Koornneef Delft University of Technology, the Netherlands Peter Ladkin Bielefeld University, Germany Giuseppe Lami ISTI-CNR, Italy Søren Lindskov Hansen Novonordisk A/S, Denmark Bev Littlewood City University London, UK Eric Luiijf TNO, the Netherlands Meine van der Meulen DNV/GL, Norway Michele Minichino ENEA, Italy Bas de Mol Academic Medical Center, the Netherlands Gilles Motet INSA Toulouse, France Odd Nordland SINTEF, Trondheim, Norway Frank Ortmeier Otto-von-Guericke Universität Magdeburg, Germany Philippe Palanque IRIT, France Alberto Pasquini Deep Blue, Italy Michael Paulitsch AIRBUS Group, Germany Thomas Pfeiffenberger Salzburg Research, Austria Peter Popov City University London, UK Felix Redmill Redmill Consultancy, London, UK Organization IX Genserik Reniers Delft University of Technology, the Netherlands Luigi Romano University of Naples “Parthenope”, Italy Alexander Romanovosky University of Newcastle, UK Martin Rothfelder Siemens, Germany John Rushby SRI International, USA Francesca Saglietti University of Erlangen-Nuremberg, Germany Christoph Schmitz Zühlke Engineering AG, Switzerland Erwin Schoitsch AIT Austrian Institute of Technology, Austria Christel Seguin ONERA, France Amund Skavhaug NTNU, Norway Mark Sujan University of Warwick, UK Jos Trienekens Eindhoven University of Technology, the Netherlands Elena Troubistsyna Åbo Akademi University, Finland Martijn Warnier Delft University of Technology, the Netherlands Alex Zechner ICS AG, Germany Sub-reviewers Victor Bandur University of York, UK Simon Foster University of York, UK Linas Laibinis Åbo Akademi University, Finland Inna Pereverzeva TUCS, Finland Thomas Santen Microsoft, USA