Threat Analysis and Risk Assessment for Connected Vehicles: A Survey

Luo, Feng; Jiang, Yifan; Zhang, Zhaojing; Ren, Yuanlin; Hou, Shuo

doi:10.1155/2021/1263820

Cited by 28 publications

(13 citation statements)

References 42 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While other risk assessment models, such as OCTAVE [23] and STRIDE [20], have been introduced, EVITA and HEAVEN play crucial roles in the automotive industry's endeavors to enhance cybersecurity and risk management. In fact, these models are exclusively designed for the automotive industry, offering a comprehensive approach to projects.…”

Section: Methodsmentioning

confidence: 99%

“…In fact, these models are exclusively designed for the automotive industry, offering a comprehensive approach to projects. While STRIDE is typically employed for threat modeling and OCTAVE is usually practical for organizational security measurement, EVITA and HEAVEN cater specifically to the unique challenges and requirements of the automotive sector [23].Their methodical approaches, combined with quantitative analysis, enable the industry to proactively address potential threats and vulnerabilities, ultimately contributing to the protection of connected vehicles and their users. Notably, both EVITA and HEAVEN utilize quantitative calculations to evaluate risk levels, considering factors such as severity and likelihood in their assessments of automotive Electrics/Electronics (E/E) systems.…”

Section: Methodsmentioning

confidence: 99%

See 1 more Smart Citation

Enhancing Risk Assessment Models for Heavy Duty and Medium Duty Vehicles through Customization of the EVITA Framework

Rahimi,

Mirhassani,

Schuelke-Leech

2024

Preprint

View full text Add to dashboard Cite

As a cornerstone of cybersecurity, risk assessment facilitates identifying and grading potential threats. Despite several risk assessment methodologies tailored for the automotive industry, such as EVITA and HEAVEN, a substantial knowledge gap persists in the context of heavy-duty (HD) and medium-duty (MD) vehicles. This study seeks to bridge this gap by introducing a customized model derived from EVITA, specifically designed for HD/MD vehicles. This model enhances the existing EVITA framework by integrating updated severity and probability weights that reflect the unique applications of HD/MD vehicles. Additionally, the attack tree initially presented in EVITA, is augmented by incorporating Common Weakness Enumeration (CWE) and Common Vulnerabilities and Exposures (CVE) standards. This research presents a comprehensive risk assessment methodology for HD/MD vehicles by building upon the EVITA model. The revised severity and likelihood weighting and the integration of CWE and CVE result in a more precise and effective strategy for assessing and mitigating potential risks. The insights gained from this research contribute to the evolution of risk assessment techniques in the automotive industry, with a particular emphasis on heavy-duty and medium-duty vehicles.

show abstract

Section: Methodsmentioning

confidence: 99%

Section: Methodsmentioning

confidence: 99%

Enhancing Risk Assessment Models for Heavy Duty and Medium Duty Vehicles through Customization of the EVITA Framework

Rahimi,

Mirhassani,

Schuelke-Leech

2024

Preprint

View full text Add to dashboard Cite

show abstract

“…The ultimate goal of the CRMS is to assist security experts in OEMs in conducting comprehensive automated threat analysis and risk assessment of the entire system, as well as to help system development engineers obtain the necessary security requirements before implementing software development. In article [ 7 ], a complete review of threat analysis and risk assessment methods for automotive systems is presented. This review mentions that the threat analysis and risk assessment methods in the automotive field are mainly divided into two categories: formula-based methods and model-based methods.…”

Section: Introductionmentioning

confidence: 99%

A Framework for Cybersecurity Requirements Management in the Automotive Domain

Luo

Jiang

Wang

et al. 2023

Sensors

Self Cite

View full text Add to dashboard Cite

The rapid development of intelligent connected vehicles has increased the attack surface of vehicles and made the complexity of vehicle systems unprecedented. Original equipment manufacturers (OEMs) need to accurately represent and identify threats and match corresponding security requirements. Meanwhile, the fast iteration cycle of modern vehicles requires development engineers to quickly obtain cybersecurity requirements for new features in their developed systems in order to develop system code that meets cybersecurity requirements. However, existing threat identification and cybersecurity requirement methods in the automotive domain cannot accurately describe and identify threats for a new feature while also quickly matching appropriate cybersecurity requirements. This article proposes a cybersecurity requirements management system (CRMS) framework to assist OEM security experts in conducting comprehensive automated threat analysis and risk assessment and to help development engineers identify security requirements prior to software development. The proposed CRMS framework enables development engineers to quickly model their systems using the UML-based (i.e., capable of describing systems using UML) Eclipse Modeling Framework and security experts to integrate their security experience into a threat library and security requirement library expressed in Alloy formal language. In order to ensure accurate matching between the two, a middleware communication framework called the component channel messaging and interface (CCMI) framework, specifically designed for the automotive domain, is proposed. The CCMI communication framework enables the fast model of development engineers to match with the formal model of security experts for threat and security requirement matching, achieving accurate and automated threat and risk identification and security requirement matching. To validate our work, we conducted experiments on the proposed framework and compared the results with the HEAVENS approach. The results showed that the proposed framework is superior in terms of threat detection rates and coverage rates of security requirements. Moreover, it also saves analysis time for large and complex systems, and the cost-saving effect becomes more pronounced with increasing system complexity.

show abstract

“…Remote attackers can take control of a vehicle by accessing connected vehicles through the wireless network, taking over the rights, and manipulating control software or messages. It implies that there is difficulty in sufficiently analyzing and evaluating & Hyunhee Park hhpark@mju.ac.kr cybersecurity threats and risks [8][9][10][11][12] in the interaction between connected vehicles and external entities. Existing research on vehicle cybersecurity [13][14][15][16][17][18][19][20][21] focused on preventing unauthorized external access to the internal network by setting a boundary section [22].…”

Section: Introductionmentioning

confidence: 99%

PIER: cyber-resilient risk assessment model for connected and autonomous vehicles

Park

2022

Wireless Netw

View full text Add to dashboard Cite

As more vehicles are being connected to the Internet and equipped with autonomous driving features, more robust safety and security measures are required for connected and autonomous vehicles (CAVs). Therefore, threat analysis and risk assessment are essential to prepare against cybersecurity risks for CAVs. Although prior studies have measured the possibility of attack and damage from attack as risk assessment indices, they have not analyzed the expanding attack surface or risk assessment indices that rely upon real-time resilience. This study proposes the PIER method to evaluate the cybersecurity risks of CAVs. We implemented cyber resilience for CAVs by presenting new criteria, such as exposure and recovery, in addition to probability and impact, as indices for the threat analysis and risk assessment of vehicles. To verify its effectiveness, the PIER method was evaluated with respect to software update over-the-air and collision avoidance features. Furthermore, we found that implementing security requirements that mitigate serious risks successfully diminishes the risk indices. Using the risk assessment matrix, the PIER method can shorten the risk determination time through high-risk coverage and a simple process.

show abstract

Threat Analysis and Risk Assessment for Connected Vehicles: A Survey

Cited by 28 publications

References 42 publications

Enhancing Risk Assessment Models for Heavy Duty and Medium Duty Vehicles through Customization of the EVITA Framework

Enhancing Risk Assessment Models for Heavy Duty and Medium Duty Vehicles through Customization of the EVITA Framework

A Framework for Cybersecurity Requirements Management in the Automotive Domain

PIER: cyber-resilient risk assessment model for connected and autonomous vehicles

Contact Info

Product

Resources

About