2021
DOI: 10.1155/2021/1263820
|View full text |Cite
|
Sign up to set email alerts
|

Threat Analysis and Risk Assessment for Connected Vehicles: A Survey

Abstract: With the rapid development of connected vehicles, people can get a better driving experience. However, the interconnection with the external network may bring growing accidents caused by cybersecurity vulnerabilities. As a result, automakers are paying more attention to cybersecurity and spending more cost on developing cybersecurity defense mechanisms. Threat analysis and risk assessment (TARA) is an efficient method to ensure the defense effect and greatly save costs in the early stage of vehicle development… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
3
2

Citation Types

0
13
0

Year Published

2022
2022
2024
2024

Publication Types

Select...
4
2
2

Relationship

1
7

Authors

Journals

citations
Cited by 32 publications
(13 citation statements)
references
References 42 publications
0
13
0
Order By: Relevance
“…While other risk assessment models, such as OCTAVE [23] and STRIDE [20], have been introduced, EVITA and HEAVEN play crucial roles in the automotive industry's endeavors to enhance cybersecurity and risk management. In fact, these models are exclusively designed for the automotive industry, offering a comprehensive approach to projects.…”
Section: Methodsmentioning
confidence: 99%
See 1 more Smart Citation
“…While other risk assessment models, such as OCTAVE [23] and STRIDE [20], have been introduced, EVITA and HEAVEN play crucial roles in the automotive industry's endeavors to enhance cybersecurity and risk management. In fact, these models are exclusively designed for the automotive industry, offering a comprehensive approach to projects.…”
Section: Methodsmentioning
confidence: 99%
“…In fact, these models are exclusively designed for the automotive industry, offering a comprehensive approach to projects. While STRIDE is typically employed for threat modeling and OCTAVE is usually practical for organizational security measurement, EVITA and HEAVEN cater specifically to the unique challenges and requirements of the automotive sector [23].Their methodical approaches, combined with quantitative analysis, enable the industry to proactively address potential threats and vulnerabilities, ultimately contributing to the protection of connected vehicles and their users. Notably, both EVITA and HEAVEN utilize quantitative calculations to evaluate risk levels, considering factors such as severity and likelihood in their assessments of automotive Electrics/Electronics (E/E) systems.…”
Section: Methodsmentioning
confidence: 99%
“…The ultimate goal of the CRMS is to assist security experts in OEMs in conducting comprehensive automated threat analysis and risk assessment of the entire system, as well as to help system development engineers obtain the necessary security requirements before implementing software development. In article [ 7 ], a complete review of threat analysis and risk assessment methods for automotive systems is presented. This review mentions that the threat analysis and risk assessment methods in the automotive field are mainly divided into two categories: formula-based methods and model-based methods.…”
Section: Introductionmentioning
confidence: 99%
“…Remote attackers can take control of a vehicle by accessing connected vehicles through the wireless network, taking over the rights, and manipulating control software or messages. It implies that there is difficulty in sufficiently analyzing and evaluating & Hyunhee Park hhpark@mju.ac.kr cybersecurity threats and risks [8][9][10][11][12] in the interaction between connected vehicles and external entities. Existing research on vehicle cybersecurity [13][14][15][16][17][18][19][20][21] focused on preventing unauthorized external access to the internal network by setting a boundary section [22].…”
Section: Introductionmentioning
confidence: 99%