Trade-off Management between Safety and Cybersecurity (TOMSAC)


The TOMSAC project aims to propose novel and effective solutions for managing trade-offs between cybersecurity and safety in converging Cyber Physical (CPS) and Internet of Things (IoT) systems.

The convergence of IoT and CPS systems means there is a need for effective methods to manage trade-offs between cybersecurity and safety measures that are inter-dependent and often complementing or conflicting. Assuring cybersecurity can introduce unintended safety consequences and vice versa. Early analysis of existing work in this area indicates an urgent need of methods for managing trade-off between safety and cybersecurity.

TOMSAC will achieve its aims through a comprehensive literature review, consultations with user partners and an industry survey. The project will reflect the findings of the available research, complemented by the recommendations of relevant international standards and guidelines (such as ISA 84, ISA 99, ISO 26262, ISO/SAE 21434), and practices used by industry. TOMSAC will develop a novel method which is inspired by the principles of Quality Function Deployment (QFD) – a method created in Japan in 1960s and widely used in industry for improving product quality and customers satisfaction.

The TOMSAC poster displayed at the PETRAS Academic Conference | Networking Research Showcase on 16 June 2022: