XANDAR: A holistic cybersecurity engineering process for safety-critical and cyber-physical systems

Fahad Siddiqui, Rafiullah Khan, Sakir Sezer, Kieran McLaughlin, Leonard Masing, Tobias Dörr, Florian Schade, Jürgen Becker, Alexander Ahlbrecht, Wanja Zaeske, Umut Durak, Nico Adler, Andreas Sailer, Raphael Weber, Thomas Wilhelm, Geza Nemeth, Victor Morales, Paco Gomez, Georgios Keramidas, Christos P. AntonopoulosMichail Mavropoulos, Vasilios Kelefouras, Christos Panagiotou, Dimitris Karadimas, Nikolaos Voros

Research output: Chapter in Book/Report/Conference proceedingConference contribution

129 Downloads (Pure)


The integration of connected and autonomous technologies in safety-critical and cyber-physical systems offers great potential in the vital application domains of transportation, manufacturing and aerospace. These technological advancements are necessary to meet the increasing demand for intelligent services, as they open doors to new business models by analysing and sharing the generated data. However, where this sharing of mix-critical data and broader connectivity brings opportunities, it simultaneously presents serious cybersecurity and safety risks due to the cyber-physical nature of these systems. Hence, delivering these intelligent services securely, safely, and reliably to its consumers is a complex engineering and design problem. One of the ways to approach this engineering problem is to consider both system functional and non-functional properties (safety, security, reliability) and systematically integrate them across system design and operational life cycle. The XANDAR project investigates this approach and aims to develop holistic software design methods and architectures for safety-critical and cyber-physical systems that guarantee functional and non-functional properties “by-construction”. This paper focuses on the non-functional aspects of the project and discusses the preliminary work. by presenting the core cybersecurity principles and uses them as a baseline to propose a holistic cybersecurity engineering process. The tasks of the proposed cybersecurity engineering process are also map onto relevant clauses of ISO 21434. In future, proposed work will be integrated into the XANDAR software toolchain and validated for an avionics situation perception pilot assistance and automotive autonomous driving use cases.

Original languageEnglish
Title of host publicationIEEE 95th Vehicular Technology Conference (VTC2022-Spring): Proceedings
PublisherInstitute of Electrical and Electronics Engineers Inc.
Number of pages5
ISBN (Electronic)978-1-6654-8243-1
ISBN (Print)978-1-6654-8244-8
Publication statusPublished - 25 Aug 2022
EventIEEE International Vehicular Technology Conference - Helsinki, Finland
Duration: 19 Jun 202222 Jun 2022
Conference number: 95

Publication series

NameVehicular Technology Conference: Proceedings
ISSN (Electronic)2577-2465


ConferenceIEEE International Vehicular Technology Conference
Abbreviated titleVTC
Internet address


  • Cybersecurity
  • Cyber-Physical Embedded System
  • Secure-by-design
  • ISO 21434
  • Risk assessment
  • Cyber Resilience
  • Runtime Monitoring
  • Safety-critical

ASJC Scopus subject areas

  • General Computer Science
  • General Engineering
  • Artificial Intelligence
  • Information Systems
  • Software
  • Aerospace Engineering
  • Automotive Engineering
  • Electrical and Electronic Engineering
  • Safety, Risk, Reliability and Quality


Dive into the research topics of 'XANDAR: A holistic cybersecurity engineering process for safety-critical and cyber-physical systems'. Together they form a unique fingerprint.

Cite this