poster

Approaching the Automation of Cyber Security Testing of Connected Vehicles

Authors:

Stefan Marksteiner and

Zhendong MaAuthors Info & Claims

CECC 2019: Proceedings of the Third Central European Cybersecurity Conference

November 2019

Article No.: 22, Pages 1 - 3

https://doi.org/10.1145/3360664.3360729

Published: 14 November 2019 Publication History

Get Access

Abstract

The advancing digitalization of vehicles and automotive systems bears many advantages for creating and enhancing comfort and safety-related systems ranging from drive-by-wire, inclusion of advanced displays, entertainment systems up to sophisticated driving assistance and autonomous driving. It, however, also contains the inherent risk of being used for purposes that are not intended for, raging from small non-authorized customizations to the possibility of full-scale cyberattacks that affect several vehicles to whole fleets and vital systems such as steering and engine control. To prevent such conditions and mitigate cybersecurity risks from affecting the safety of road traffic, testing cybersecurity must be adopted into automotive testing at a large scale. Currently, the manual penetration testing processes cannot uphold the increasing demand due to time and cost to test complex systems. We propose an approach for an architecture that (semi-)automates automotive cybersecurity test, allowing for more economic testing and therefore keeping up to the rising demand induced by new vehicle functions as well as the development towards connected and autonomous vehicles.

References

[1]

International Organization for Standardization and Society of Automotive Engineers. 2019. Road Vehicles -- Cybersecurity Engineering.

Google Scholar

[2]

K. Koscher, A. Czeskis, F. Roesner, S. Patel, T. Kohno, S. Checkoway, D. McCoy, B. Kantor, D. Anderson, H. Shacham, and S. Savage. 2010. Experimental Security Analysis of a Modern Automobile. In 2010 IEEE Symposium on Security and Privacy. 447--462. https://doi.org/10.1109/SP.2010.34

Digital Library

Google Scholar

[3]

Charlie Miller and Chris Valasek. 2015. Remote exploitation of an unaltered passenger vehicle. Black Hat USA.

Google Scholar

[4]

Upstream Security. 2019. Upstream Security Global Automotive Cybersecurity Report. Technical Report. Upstream Security.

Google Scholar

[5]

David Waltermire and Karen Scarfone. 2011. Guide to Using Vulnerability Naming Schemes (Revision 1). SP 800-51. National Institute of Standards and Technology. https://csrc.nist.gov/publications/detail/sp/800-51/rev-1/final

Google Scholar

Cited By

View all

Marksteiner SPriller PWolf M(2024)Approaches for Automating Cybersecurity Testing of Connected VehiclesIntelligent Secure Trustable Things10.1007/978-3-031-54049-3_13(219-234)Online publication date: 20-Jun-2024
https://doi.org/10.1007/978-3-031-54049-3_13
Sommer FKriesten RKargl F(2023)Survey of Model-Based Security Testing Approaches in the Automotive DomainIEEE Access10.1109/ACCESS.2023.328217611(55474-55514)Online publication date: 2023
https://doi.org/10.1109/ACCESS.2023.3282176
Luo FZhang XYang ZJiang YWang JWu MFeng W(2022)Cybersecurity Testing for Automotive Domain: A SurveySensors10.3390/s2223921122:23(9211)Online publication date: 26-Nov-2022
https://doi.org/10.3390/s22239211
Show More Cited By

Index Terms

Approaching the Automation of Cyber Security Testing of Connected Vehicles

Recommendations

Development of a methodology to demonstrate the environmental impact of connected vehicles under lane-changing conditions

This paper describes a lane-change model for connected vehicles, and evaluates the environmental impact per road level of service (LOS) when a host vehicle makes a lane change. During manual driving, the host vehicle accelerates or decelerates to create ...
Read More
Automotive Cyber Security: Lessons Learned and Research Challenges
CS2 '18: Proceedings of the Fifth Workshop on Cryptography and Security in Computing Systems

The automotive industry is undergoing a major transformation process where everything from the car key to the vehicle diagnostics is becoming digital. Modern vehicles have several wireless interfaces, and are interconnected with various consumer devices,...
Read More
Developing a new integrated advanced driver assistance system in a connected vehicle environment
Abstract
Advanced driver assistance systems (ADASs) can effectively enhance driving and safety performance. Due to the inherent limitations of in-vehicle technologies concerning information sharing, existing studies mainly focus on demonstrating the ...
Read More

Comments

Information & Contributors

Information

Published In

CECC 2019: Proceedings of the Third Central European Cybersecurity Conference

November 2019

134 pages

ISBN:9781450372961

DOI:10.1145/3360664

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

In-Cooperation

University of Maribor

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 14 November 2019

Check for updates

Author Tags

Qualifiers

Poster
Research
Refereed limited

Funding Sources

Electronic Components and Systems for European Leadership Joint Undertaking

Conference

CECC 2019

CECC 2019: Central European Cybersecurity Conference

November 14 - 15, 2019

Munich, Germany

Acceptance Rates

CECC 2019 Paper Acceptance Rate 19 of 35 submissions, 54%;

Overall Acceptance Rate 38 of 65 submissions, 58%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

8
Total Citations
View Citations
295
Total Downloads

Downloads (Last 12 months)24
Downloads (Last 6 weeks)0

Other Metrics

View Author Metrics

Citations

Cited By

View all

Marksteiner SPriller PWolf M(2024)Approaches for Automating Cybersecurity Testing of Connected VehiclesIntelligent Secure Trustable Things10.1007/978-3-031-54049-3_13(219-234)Online publication date: 20-Jun-2024
https://doi.org/10.1007/978-3-031-54049-3_13
Sommer FKriesten RKargl F(2023)Survey of Model-Based Security Testing Approaches in the Automotive DomainIEEE Access10.1109/ACCESS.2023.328217611(55474-55514)Online publication date: 2023
https://doi.org/10.1109/ACCESS.2023.3282176
Luo FZhang XYang ZJiang YWang JWu MFeng W(2022)Cybersecurity Testing for Automotive Domain: A SurveySensors10.3390/s2223921122:23(9211)Online publication date: 26-Nov-2022
https://doi.org/10.3390/s22239211
Benyahya MCollen AKechagia SNijdam N(2022)Automated city shuttlesComputers and Security10.1016/j.cose.2022.102904122:COnline publication date: 1-Nov-2022
https://dl.acm.org/doi/10.1016/j.cose.2022.102904
Marksteiner SMarko NSmulders AKaragiannis SStahl FHamazaryan HSchlick RKraxberger SVasenev A(2021)A Process to Facilitate Automated Automotive Cybersecurity Testing2021 IEEE 93rd Vehicular Technology Conference (VTC2021-Spring)10.1109/VTC2021-Spring51267.2021.9448913(1-7)Online publication date: Apr-2021
https://doi.org/10.1109/VTC2021-Spring51267.2021.9448913
Marksteiner SPriller P(2021)A Model-Driven Methodology for Automotive Cybersecurity Test Case Generation2021 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)10.1109/EuroSPW54576.2021.00021(129-135)Online publication date: Sep-2021
https://doi.org/10.1109/EuroSPW54576.2021.00021
Marksteiner SBronfman SWolf MLazebnik E(2021)Using Cyber Digital Twins for Automated Automotive Cybersecurity Testing2021 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)10.1109/EuroSPW54576.2021.00020(123-128)Online publication date: Sep-2021
https://doi.org/10.1109/EuroSPW54576.2021.00020
Marko NCastella Triginer JStriecks CBraun TSchwarz RMarksteiner SVasenev AKemmerich JHamazaryan HShan LLoiseaux C(2021)Guideline for Architectural Safety, Security and Privacy Implementations Using Design Patterns: SECREDAS ApproachComputer Safety, Reliability, and Security. SAFECOMP 2021 Workshops10.1007/978-3-030-83906-2_3(39-51)Online publication date: 25-Aug-2021
https://doi.org/10.1007/978-3-030-83906-2_3

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Development of a methodology to demonstrate the environmental impact of connected vehicles under lane-changing conditions

Automotive Cyber Security: Lessons Learned and Research Challenges

Developing a new integrated advanced driver assistance system in a connected vehicle environment

Comments

Published In

In-Cooperation

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Other Metrics

Article Metrics

Other Metrics

Cited By

Login options

Full Access

PDF

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Development of a methodology to demonstrate the environmental impact of connected vehicles under lane-changing conditions

Automotive Cyber Security: Lessons Learned and Research Challenges

Developing a new integrated advanced driver assistance system in a connected vehicle environment

Comments

Information

Published In

In-Cooperation

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Get Access

Login options

Full Access

View options

PDF

eReader

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations