Towards a security‐driven automotive development lifecycle

Dobaj, Jürgen; Macher, Georg; Ekert, Damjan; Riel, Andreas; Messnarz, Richard

doi:10.1002/smr.2407

Cited by 21 publications

(7 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…With the increasing connectivity and autonomy in vehicles, the attack surface is expanding, leading to a higher risk of security attacks (Sommer et al, 2019). This necessitates a security-driven automotive development lifecycle to address these crucial challenges (Dobaj et al, 2021). Additionally, there is a need for an architectural approach to integrate safety and security requirements in smart products and systems design (Ezeigweneme, et al, 2024;Riel et al, 2018).…”

Section: Challenges and Opportunitiesmentioning

confidence: 99%

The evolution of embedded systems in automotive industry: A global review

Sedat Sonko,

Cosmas Dominic Daudu,

Femi Osasona

et al. 2024

World J. Adv. Res. Rev.

View full text Add to dashboard Cite

The automotive industry has undergone a revolutionary transformation with the integration of embedded systems, marking a paradigm shift in vehicle design, performance, and safety. This global review explores the evolution of embedded systems in the automotive sector, encompassing the technological advancements, market trends, and the transformative impact on vehicle functionalities. Over the past few decades, the automotive landscape has witnessed a rapid integration of embedded systems to enhance vehicle intelligence and connectivity. These systems, ranging from Engine Control Units (ECUs) to Advanced Driver Assistance Systems (ADAS), have become pivotal in shaping the modern automotive experience. The review delves into the historical trajectory, starting from the early stages of simple control units to the sophisticated, interconnected systems prevalent in today's vehicles. The adoption of embedded systems has not been uniform across regions, and the review highlights the global trends and regional disparities in implementing these technologies. Different countries and automotive markets have exhibited diverse approaches, influenced by regulatory frameworks, consumer preferences, and the availability of infrastructure. Moreover, the review examines the symbiotic relationship between embedded systems and the emergence of electric and autonomous vehicles. As the automotive industry embraces sustainability and autonomy, embedded systems play a pivotal role in achieving these objectives by optimizing energy consumption, improving safety measures, and enabling seamless communication between vehicles and their environment. The challenges and opportunities associated with the evolution of embedded systems are also scrutinized, including cybersecurity concerns, standardization efforts, and the growing role of artificial intelligence in automotive applications. This comprehensive review contributes to a deeper understanding of the intricate dynamics between embedded systems and the automotive industry, providing valuable insights for researchers, industry professionals, and policymakers navigating the ever-evolving landscape of smart and connected vehicles.

show abstract

Section: Challenges and Opportunitiesmentioning

confidence: 99%

The evolution of embedded systems in automotive industry: A global review

Sedat Sonko,

Cosmas Dominic Daudu,

Femi Osasona

et al. 2024

World J. Adv. Res. Rev.

View full text Add to dashboard Cite

show abstract

“…25 And users expect a high level of safety [26][27][28][29] and security. [30][31][32][33][34][35][36][37] More functions are added constantly and the level of autonomous drive [38][39][40][41][42] is increasing. Such vehicles need connectivity and software updates and show vulnerabilities toward attackers.…”

Section: F I G U R E 1 Added Processes For Automotive Spice For Cyber...mentioning

confidence: 99%

“…Cybersecurity in automotive has become a major issue because modern cars have gateways, vehicle to infrastructure communication, WLAN communication, busses, domain controllers, a large number of electronic control units, and millions lines of software 25 . And users expect a high level of safety 26–29 and security 30–37 . More functions are added constantly and the level of autonomous drive 38–42 is increasing.…”

Section: Introductionmentioning

confidence: 99%

Experiences with the automotive SPICE for cybersecurity assessment model and tools

Messnarz¹,

Ekert²,

Macher

et al. 2022

J Software Evolu Process

Self Cite

View full text Add to dashboard Cite

In August 2021 the ISO 21434:2021 standard for Road vehicles—Cybersecurity Engineering has been published. At the same time the blue book from VDA (Verein der Deutschen Automobilgesellschaft; German Automotive Association) for Automotive SPICE cybersecurity assessments has been released. In addition in the period September–December 2021 the training material for iNTACS (INTernational Assessor Certification Schema) certified Automotive SPICE for cybersecurity assessors has been developed. Since February 2022 the upgrade training of assessors worldwide has started. Beside the ASPICE (Automotive SPICE) for cybersecurity blue book also a red book from VDA has been published. The red book describes the questions to check in an ACSMS (Automotive CyberSecurity Management System) audit. This paper explains the main strategy and content for ASPICE for Cybersecurity assessments and how such assessments are integrated to the overall ACSMS strategy. Also, the paper outlines an example method and tool used in ASPICE for cybersecurity assessments and how such assessment results will look like.

show abstract

“…Depending on the industrial sector and the specific use cases, it is necessary to consider domain-specific standards and engineering processes in the CPS design phase to ensure, e.g., system safety and security [11,12]. In addition, fundamental factors like cost, performance, and dependability, as well as other system properties such as usability, manageability, and adaptability, influence technical system design.…”

Section: Extending Seem For Technical Requirements Derivationmentioning

confidence: 99%

A Method for Deriving Technical Requirements of Digital Twins as Industrial Product-Service System Enablers

Dobaj

Riel

Macher

et al. 2022

Communications in Computer and Information Science

Self Cite

View full text Add to dashboard Cite

Industrial Product-Service Systems (IPSS) are increasingly dominant in several sectors. Predominant value-adding services provided for industrial assets such as production systems, electric power plants, and car fleets are remote asset maintenance, monitoring, control, and reconfiguration. IPSS designers lack methods and tools supporting them in systematically deriving technical design requirements for the underlying Cyber-Physical System (CPS) IPSS services. At the same time, the use of Digital Twins (DTs) as digital representations of CPS assets is becoming increasingly feasible thanks to powerful, networked information technology (IT) and operation technology (OT) infrastructures and the ubiquity of sensors and data. This paper proposes a method for guiding IPSS designers in the specification and implementation of DT instances to serve as the key enablers of IPSS services. The systematic mapping of the continuous IT design-build-deployment cycle concept to the OT domain of CPS is at the heart of the applied methodology, which is complemented by a stakeholder-driven requirements elicitation. The key contribution is a structured method for deriving technical design requirements for DT instances as IPSS. This method is validated on real-world use cases in an evaluation environment for distributed CPS IPSS.

show abstract

Towards a security‐driven automotive development lifecycle

Cited by 21 publications

References 28 publications

The evolution of embedded systems in automotive industry: A global review

The evolution of embedded systems in automotive industry: A global review

Experiences with the automotive SPICE for cybersecurity assessment model and tools

A Method for Deriving Technical Requirements of Digital Twins as Industrial Product-Service System Enablers

Contact Info

Product

Resources

About