Systematic Pattern Approach for Safety and Security Co-engineering in the Automotive Domain

Amorim, Tiago; Martin, Helmut; Ma, Zehndong; Schmittner, Christoph; Schneider, Daniel; Macher, Georg; Winkler, Bernhard; Krammer, Martin; Kreiner, Christian

doi:10.1007/978-3-319-66266-4_22

Cited by 31 publications

(25 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moving forward, we are working with our industrial collaborators to expand the security pattern repository, including making use of taxonomies of automotive security attacks [54]. We are also exploring how the security patterns can be incorporated into security and safety-focused development processes, similar to that proposed by Amorim et al [47]. We are also exploring socio-technical approaches to securing automotive cybersecurity vulnerabilities [68].…”

Section: Discussionmentioning

confidence: 99%

“…Specifically, automotive systems face challenges with available communication protocols and the use of automotive-specific communication architecture (e.g., CAN Bus, FlexRay, LIN, MOST), limited communication resources, and stringent performance requirements for safety-critical functionality [8,45]. Despite these limitations, researchers have adapted existing security approaches to comply with automotive system's constraints, with a focus on authentication and encryption [46,47,48,49,50].…”

Section: Security Solutions For Automotive Systemsmentioning

confidence: 99%

See 1 more Smart Citation

Security Patterns for Connected and Automated Automotive Systems†

Cheng¹,

Doherty²,

Polanco³

et al. 2020

JASEN

View full text Add to dashboard Cite

As automotive systems become increasingly sophisticated with numerous onboard features that support extensive inward and outward-facing communication, cybersecurity vulnerabilities are exposed. The relatively recent acknowledgement of automotive cybersecurity challenges has prompted numerous research efforts into developing techniques to handle individual threat vectors, the pathways and threat surfaces by which an attack can be realized. Security design patterns have been developed for many application domains (e.g., enterprise systems, networking systems, and distributed systems), but not much has been explored for automotive systems. This paper introduces a collection of security design patterns targeted for automotive cybersecurity needs. We leverage and extend the de facto standard template used to describe design patterns to include fields specific to the automotive domain and SAE J3061 cybersecurity development guidelines.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Security Solutions For Automotive Systemsmentioning

confidence: 99%

Security Patterns for Connected and Automated Automotive Systems†

Cheng¹,

Doherty²,

Polanco³

et al. 2020

JASEN

View full text Add to dashboard Cite

show abstract

“…T. Amorim et al provided a systematic pattern-based approach to interlink safety and security patterns. e co-engineering loop was introduced into the waterfall engineering lifecycle to analyze and solve conflicts between both sides [25]. Pereira et al presented an integrated approach, in which two teams work separately in parallel steps and then work cooperatively for integrated analysis.…”

Section: Co-designmentioning

confidence: 99%

A Systematic Approach for Cybersecurity Design of In-Vehicle Network Systems with Trade-Off Considerations

Luo

2020

Security and Communication Networks

View full text Add to dashboard Cite

With the increasing connectivity of modern vehicles, protecting systems from attacks on cyber is becoming crucial and urgent. Meanwhile, a vehicle should guarantee a safe and comfortable trip for users. Therefore, how to design a cybersecurity-critical system in vehicles with safety and user experience (UX) considerations is increasingly essential. However, most co-design methods focus on safety engineering with attack concerns and do not discuss conflicts and integration, and few contain the UX aspect. Besides, most existing approaches are abstract at a high level without practical guidelines. This paper presents a literature review of existing safety and security design approaches and proposes a systematic approach for cybersecurity design of in-vehicle network systems based on the guideline in SAE J3061. The trade-off analysis is performed by using association keys and the proposed affecting map. The design process of an example Diagnostic on Internet Protocol (DoIP) system is reported to show how the approach works. Compared with the existing approaches, the proposed one considers safety, cybersecurity, and UX simultaneously, solves conflicts qualitatively or quantitatively, and obtains trade-off design requirements. This approach is applicable to the cybersecurity-driven design of in-vehicle network systems in the early stage with safety and UX considerations.

show abstract

“…Unfortunatelly the cybersecurity guidebook and SAHARA do not use models. Approaches like Cheng et al (2019); Amorim et al (2017) use models, but do not use SysML. Approaches like security by MBRE (Japs, 2020a) or SAVE (Japs, 2020b) use SysML within the context of MBSE.…”

Section: Introductionmentioning

confidence: 99%

Resolution of Safety Relevant Security Threats in the System Architecture Design Phase on the Example of Automotive Industry

Japs

Anacker

2021

Proc. Des. Soc.

View full text Add to dashboard Cite

Cyber-physical systems (CPS), like autonomous vehicles, are intelligent and networked. The development of such systems and its components requires interdisciplinary cooperation between different stakeholders. A lack of system understanding between stakeholders can lead to unidentified and unresolved security threats & safety hazards in early engineering phases, resulting in high costs in product development and potentially compromises compliance with the safety of CPS.Model-based systems engineering (MBSE) improves the system understanding between stakeholders by using models.However, MBSE approaches only partially address security threats & safety hazards. In particular, their integrative consideration is not taken into account.Established security & safety approaches are either only applicable to specific disciplines or only partially consider security threats & safety hazards.In the context of this paper we present a method for the resolution of safety relevant security threats in the system architecture design phase using design patterns.We illustrate our approach with the example of the automotive sector.Finally, we present an evaluation of the method, based on an 8 week project with 67 master students.

show abstract

Systematic Pattern Approach for Safety and Security Co-engineering in the Automotive Domain

Cited by 31 publications

References 9 publications

Security Patterns for Connected and Automated Automotive Systems†

Security Patterns for Connected and Automated Automotive Systems†

A Systematic Approach for Cybersecurity Design of In-Vehicle Network Systems with Trade-Off Considerations

Resolution of Safety Relevant Security Threats in the System Architecture Design Phase on the Example of Automotive Industry

Contact Info

Product

Resources

About