On September 13, 2018, NIST will host a workshop on methods and technologies for reasoning about IoT trustworthiness. The workshop will feature presentations and discussions about current research on the NIST Cyber-Physical Systems (CPS) Framework, Framework Modeling, and Formalizing Reasoning about CPS Models.
“Trustworthiness,” as defined in the CPS Framework, encompasses the concerns of security, privacy, safety, reliability and resilience, which are too often addressed separately and in isolation in risk management approaches. Therefore, activities intended to address one concerns may adversely impact activities to address one or more other concerns. (The overall concept of trustworthiness was introduced in the CPS Framework and further explored during a 2016 workshop, “Exploring the Dimensions of Trustworthiness: Challenges and Opportunities.”)
This workshop will extend the trustworthiness discussion by looking at topics related to design for, and study of, IoT trustworthiness.
Consider, for example, one of the challenges associated with conceiving, designing, building, and assuring increasingly larger and more complex CPS and IoT systems—namely, requirements in CPS models can take many, apparently inequivalent, forms. Careful reasoning about these requirements and models, however, allows one to assess their logical equivalence and thus allows one to determine whether or not the CPS model meets the concerns of its stakeholders. This formalized reasoning approach can reveal dependencies and tradeoffs between concerns.