In context of safety-critical Systems of Systems (SoS) that are built as a collection of several systems capable of fulfilling their own function as well as the overall SoS function, increase production efficiency and decrease human effort in such systems, one has to be able to guarantee critical properties such as safety and security. It is not sufficient to analyze and guarantee these critical properties isolated one from another, but one has to be able to provide joint analysis and guarantees on safety and security. This paper is our initial effort towards building a common safety and security assurance approach for complex SoS, where we start from identification and analysis of attack models and connecting them to the already identified functional safety requirements. In this way we will be able to assess system assets and vulnerabilities, and identify ways how an attacker could exploit them. We aim to connect attack modeling process to safety process by aligning mitigation strategies with safety requirements.

In this paper we present a modeling and analysis tool for service-oriented systems. The tool enables graphical modeling of service-based systems, within the resource-aware timed behavioral language Remes, as well as a textual system description. We have developed a graphical environment where services can be composed as desired by the user, together with a textual service composition interface in which compositions can also be checked for correctness. We also provide automated traceability between the two design interfaces, which results in a tool that enhances the potential of system design by intuitive service manipulation. The paper presents the design principles, infrastructure, and the user interface of our tool.