Ponderarium, a place for Cyber Physical System conformity assessment

Nowadays, complex Cyber-Physical Systems (CPSs) are commonly exchanged on the market. However, this complexity does not allow citizens or consumers to properly understand the quality, security, and safety of these products. When considering CPS, such as Advanced Driver Assistance Systems, autopilots on aircraft, or in vitro medical devices, consumers rely on local regulations, international standards, or even simply on their presence on the market to buy, use, and trust these products. Still, when examining regulations and directives provided by the European Union and other governments, only the documentation, not the product, needs to be assessed for compliance. Of course, manufacturers are also interested in knowing if their products satisfy their own set of requirements before putting them on the market. In this paper, we discuss the need for a Conformity Assessment tool, Ponderarium, that enables interested parties to assess the quality, security, and safety of CPSs based on static resources. Then, we devise a methodology supported by a first version of Ponderarium that we validate using open-source software for a medical device. The purpose of Ponderarium is to enable the conformity assessment of a CPS from related static resources (such as source code or network frames) with respect to specific requirements extracted from natural language legal texts.

Conference paper