PIER: cyber-resilient risk assessment model for connected and autonomous vehicles

Park, Seung-Hyun; Park, Hyun‐Hee

doi:10.1007/s11276-022-03084-9

Cited by 6 publications

(6 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition, the framework 16 defines parameters for determining the impact value and the threat probability, as well as the weights for each of their levels. In this case, the PIER model proposed for connected and autonomous vehicles 68 could be an inspiration for risk-level assessment. The model works with a combination of probability (P) and impact (I) but complements the assessment with the categories exposure (E) and recovery (R).…”

Section: Discussionmentioning

confidence: 99%

Internet of Medical Things Security Frameworks for Risk Assessment and Management: A Scoping Review

Svandova,

Smutny

2024

JMDH

View full text Add to dashboard Cite

Background The massive expansion of the Internet of medical things (IoMT) technology brings many opportunities for improving healthcare. At the same time, their use increases security risks, brings security and privacy concerns, and threatens the functioning of healthcare facilities or healthcare provision. Purpose This scoping review aims to identify progress in designing risk assessment and management frameworks for IoMT security. The frameworks found are divided into two groups according to whether frameworks address the technological design of risk management or assess technological measures to ensure the security of the IoMT environment. Furthermore, the article intends to find out whether frameworks also include an assessment of organisational measures related to IoMT security. Methods This review was prepared using PRISMA ScR guidelines. Relevant studies were searched in the citation databases Web of Science and Scopus. The search was limited to articles published in English between 2018 and 17 September 2023. The initial search yielded 1341 articles, of which 44 (3.3%) were included in the scoping review. A qualitative content analysis focused on selected security perspectives and progress in the given area was carried out. Results Thirty-two articles describe the design of risk assessment and management frameworks. Twelve articles describe the design of frameworks for assessing the security of IoMT devices and possibly offer a comparison of different IoMT alternatives. A description of the included articles was prepared from the selected security perspectives. Conclusion The review shows the need to create comprehensive or holistic frameworks for operational security and privacy risk management at all layers of the IoMT architecture. It includes the design of specific technological solutions and frameworks for continuously assessing the overall level of information security and privacy of the IoMT environment. Unfortunately, none of the found frameworks offer an assessment of organizational measures even though the importance of the organization measures was highlighted in articles. Another area of interest for researchers could be the design of a general risk management database for IoMT, which would include potential IoMT-related risks connected to a particular device.

show abstract

Section: Discussionmentioning

confidence: 99%

Internet of Medical Things Security Frameworks for Risk Assessment and Management: A Scoping Review

Svandova,

Smutny

2024

JMDH

View full text Add to dashboard Cite

show abstract

“…In order to accurately determine the risk level, a comprehensive risk assessment must be conducted by taking into account the impact level of potential damage scenarios and the attack feasibility level of possible attack paths. This ensures that a precise evaluation can be made regarding the feasibility of each threat that may occur [74].…”

Section: Methodmentioning

confidence: 99%

“…As the connection of vehicles keeps developing, the detrimental consequences of cyberattacks that transmit erroneous information over the network are becoming more severe. Furthermore, the frequency of these attacks is not decreasing, which is more evident that the risk level magnitude is high [74], [81]. As shown in Table 15, the minimum and maximum ranges for the impact rating are defined and divided into three groups for intuitive interpretation.…”

Section: B Mathematical Modeling Of Proposed Approachmentioning

confidence: 99%

An Integrated Approach of Threat Analysis for Autonomous Vehicles Perception System

et al. 2023

View full text Add to dashboard Cite

Automated vehicles are a revolutionary step in mobility, providing a safe and convenient riding experience while keeping the human-driving task minimal to none. Therefore, these intelligent vehicles are equipped with sophisticated perception sensors (e.g., cameras and radars), high-performance computers, artificial intelligence (AI)-driven algorithms, and connectivity with other internet-of-things (IoT) devices. This makes autonomous vehicles (AVs) a special kind of cyber-physical system (CPS) that is moving at speed in highly interactive and dynamic environments (e.g., public roads). Thus, AV is a potential target for cyber attackers to weaponize, compromising safety and mobility on the road. The first step in addressing this problem is to have a robust threat modeling framework that can address the evolving cyber-physical threats, especially to AV applications. In this regard, two areas are studied in this paper: the common practice of threat modeling in automotive and the ISO/SAE 21434 standard, and sensors and machine learning (ML) algorithms for AV perception systems and potential cyber-physical attacks. A comparative threat analysis for an AV perception system with the ISO/SAE 21434 standard and a system-theoretic process analysis for security (STPA-Sec) approach is also demonstrated in this paper. Based on the analysis, this paper proposes a robust threat analysis and risk assessment framework with mathematical modeling to identify cyber-physical threats to AV perception systems that are critical for the driving behaviors and complex interactions of AVs in their operational design domain.

show abstract

“…Additionally, secure over‐the‐air (OTA) update mechanisms can be employed (Park & Park, 2022; Nilsson & Larson, 2008; Zandberg et al, 2019), which encrypt the update packages and verify their integrity before installation. By implementing secure communication protocols and encryption techniques, the confidentiality and integrity of the update process can be maintained, safeguarding against potential attacks.…”

Section: Cav Cybersecuritymentioning

confidence: 99%

Machine learning and blockchain technologies for cybersecurity in connected vehicles

Ahmad,

Zia,

Naqvi

et al. 2023

WIREs Data Min & Knowl

View full text Add to dashboard Cite

Future connected and autonomous vehicles (CAVs) must be secured against cyberattacks for their everyday functions on the road so that safety of passengers and vehicles can be ensured. This article presents a holistic review of cybersecurity attacks on sensors and threats regarding multi‐modal sensor fusion. A comprehensive review of cyberattacks on intra‐vehicle and inter‐vehicle communications is presented afterward. Besides the analysis of conventional cybersecurity threats and countermeasures for CAV systems, a detailed review of modern machine learning, federated learning, and blockchain approach is also conducted to safeguard CAVs. Machine learning and data mining‐aided intrusion detection systems and other countermeasures dealing with these challenges are elaborated at the end of the related section. In the last section, research challenges and future directions are identified.This article is categorized under: Commercial, Legal, and Ethical Issues > Security and Privacy Technologies > Machine Learning Technologies > Internet of Things

show abstract

PIER: cyber-resilient risk assessment model for connected and autonomous vehicles

Cited by 6 publications

References 34 publications

Internet of Medical Things Security Frameworks for Risk Assessment and Management: A Scoping Review

Internet of Medical Things Security Frameworks for Risk Assessment and Management: A Scoping Review

An Integrated Approach of Threat Analysis for Autonomous Vehicles Perception System

Machine learning and blockchain technologies for cybersecurity in connected vehicles

Contact Info

Product

Resources

About