Critical systems must be both safe from inadvertent harm and secure from malicious actors. However, safety and security practices have historically evolved in isolation. Safety-critical systems, such as aircraft and medical devices, have long been analyzed for problems that could arise accidentally or from component degradation.

They have been considered standalone systems, however, that were impervious to security issues because they had no networking capabilities. 

The SEI is developing an integrated approach to safety and security engineering, supported by an AADL-based workbench.

This approach:

• Unifies safety and security analysis through a formalized taxonomy that is used to drive system verification via fault injection and simulation