A Model-Driven Methodology for Automotive Cybersecurity Test Case Generation

Marksteiner, Stefan; Priller, Peter

doi:10.1109/eurospw54576.2021.00021

Cited by 4 publications

(1 citation statement)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the same year, they also proposed the use of fingerprinting and model learning to construct attack tree models and utilize graph theory to generate attack paths. These approaches offer the possibility of automating cybersecurity testing, but these approaches are still at a conceptual stage [ 78 ]. Mahmood et al [ 73 ] introduced an automated security testing approach, which uses attack trees for threat modeling.…”

Section: Automotive Cybersecurity Testing Methodsmentioning

confidence: 99%

Cybersecurity Testing for Automotive Domain: A Survey

Luo

Zhang

Yang

et al. 2022

Sensors

View full text Add to dashboard Cite

Modern vehicles are more complex and interconnected than ever before, which also means that attack surfaces for vehicles have increased significantly. Malicious cyberattacks will not only exploit personal privacy and property, but also affect the functional safety of electrical/electronic (E/E) safety-critical systems by controlling the driving functionality, which is life-threatening. Therefore, it is necessary to conduct cybersecurity testing on vehicles to reveal and address relevant security threats and vulnerabilities. Cybersecurity standards and regulations issued in recent years, such as ISO/SAE 21434 and UNECE WP.29 regulations (R155 and R156), also emphasize the indispensability of cybersecurity verification and validation in the development lifecycle but lack specific technical details. Thus, this paper conducts a systematic and comprehensive review of the research and practice in the field of automotive cybersecurity testing, which can provide reference and advice for automotive security researchers and testers. We classify and discuss the security testing methods and testbeds in automotive engineering. Furthermore, we identify gaps and limitations in existing research and point out future challenges.

show abstract

Section: Automotive Cybersecurity Testing Methodsmentioning

confidence: 99%

Cybersecurity Testing for Automotive Domain: A Survey

Luo

Zhang

Yang

et al. 2022

Sensors

View full text Add to dashboard Cite

show abstract

Approaches for Automating Cybersecurity Testing of Connected Vehicles

Marksteiner,

Priller,

Wolf

2024

Studies in Computational Intelligence

View full text Add to dashboard Cite

Vehicles are on the verge building highly networked and interconnected systems with each other. This requires open architectures with standardized interfaces. These interfaces provide huge surfaces for potential threats from cyber attacks. Regulators therefore demand to mitigate these risks using structured security engineering processes. Testing the effectiveness of this measures, on the other hand, is less standardized. To fill this gap, this book chapter contains an approach for structured and comprehensive cybersecurity testing of contemporary vehicular systems. It gives an overview of how to define secure systems and contains specific approaches for (semi-)automated cybersecurity testing of vehicular systems, including model-based testing and the description of an automated platform for executing tests.

show abstract