Towards Automated Threat Modeling of Cyber-Physical Systems

Jamil, Ameerah-Muhsinah; Khan, Shifa; Lee, Jian Kai; Othmane, Lotfi ben

doi:10.1109/icsecs52883.2021.00118

Cited by 8 publications

(5 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These systems include distributed units with some degree of autonomous functions. However, it is difficult to cover all aspects of such use cases by using a single method Jamil et al (2021a). Thus, the methods are evaluated for the selection in our study, based on the metrics derived from the work in Shevchenko et al (2018).…”

Section: Discussionmentioning

confidence: 99%

Challenges in threat modelling of new space systems: A teleoperation use-case

Sheik

Atmaca

Maple

et al. 2022

Advances in Space Research

View full text Add to dashboard Cite

Section: Discussionmentioning

confidence: 99%

Challenges in threat modelling of new space systems: A teleoperation use-case

Sheik

Atmaca

Maple

et al. 2022

Advances in Space Research

View full text Add to dashboard Cite

“…We considered five potentially relevant threat modeling methods for a CCAV ecosystem [ 19 ]. It is difficult to address all the challenges of such a use case with a single solution [ 20 ]. Therefore, a selection of metrics developed from the work in [ 21 ] were used to assess the methods in this research: (i) Maturity: Is the technique well-defined and has it been employed in earlier research?…”

Section: Threat Analysis and Risk Assessment Methodsmentioning

confidence: 99%

Securing Cloud-Assisted Connected and Autonomous Vehicles: An In-Depth Threat Analysis and Risk Assessment

Sheik,

Maple,

Epiphaniou

et al. 2023

Sensors

View full text Add to dashboard Cite

As threat vectors and adversarial capabilities evolve, Cloud-Assisted Connected and Autonomous Vehicles (CCAVs) are becoming more vulnerable to cyberattacks. Several established threat analysis and risk assessment (TARA) methodologies are publicly available to address the evolving threat landscape. However, these methodologies inadequately capture the threat data of CCAVs, resulting in poorly defined threat boundaries or the reduced efficacy of the TARA. This is due to multiple factors, including complex hardware–software interactions, rapid technological advancements, outdated security frameworks, heterogeneous standards and protocols, and human errors in CCAV systems. To address these factors, this study begins by systematically evaluating TARA methods and applying the Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, and Elevation of privileges (STRIDE) threat model and Damage, Reproducibility, Exploitability, Affected Users, and Discoverability (DREAD) risk assessment to target system architectures. This study identifies vulnerabilities, quantifies risks, and methodically examines defined data processing components. In addition, this study offers an attack tree to delineate attack vectors and provides a novel defense taxonomy against identified risks. This article demonstrates the efficacy of the TARA in systematically capturing compromised security requirements, threats, limits, and associated risks with greater precision. By doing so, we further discuss the challenges in protecting hardware–software assets against multi-staged attacks due to emerging vulnerabilities. As a result, this research informs advanced threat analyses and risk management strategies for enhanced security engineering of cyberphysical CCAV systems.

show abstract

“…The UAV has a complex architecture and most of the information regarding measures in place is confidential, so it is difficult to identify which threat is more dangerous to a UAV that needs to be modelled at utmost priority [106]. Moreover, there has been wide research for modelling the security and privacy of vehicleto-vehicle (V2V) [117], Vehicle-to-infrastructure (V2I) [118] and Vehicle-to-everything (V2X) [119]. But threat modelling techniques (such as STRIDE, LINDDUN) are not sufficient for securing V2V, V2I and V2X because they require the autonomy approach [120] to deal with privacy and security vulnerabilities.…”

Section: Challenges and Difficulties In Conducting Threat Modelling F...mentioning

confidence: 99%

Data Privacy Threat Modelling for Autonomous Systems: A Survey From the GDPR's Perspective

Azam

Michala

Ansari

et al. 2023

IEEE Trans. Big Data

View full text Add to dashboard Cite

Intelligence-based applications have been increasingly deployed in every field of life including smart homes, smart cities, healthcare services, and autonomous systems where personal data is collected across heterogeneous sources and processed using "black-box" algorithms in opaque centralised servers. As a consequence, preserving the data privacy and security of these applications is of utmost importance. In this respect, a modelling technique for identifying potential data privacy threats and specifying countermeasures to mitigate the related vulnerabilities in such AI-based systems plays a significant role in preserving and securing personal data. Various threat modelling techniques have been proposed such as STRIDE, LINDDUN, and PASTA but none of them is sufficient to model the data privacy threats in autonomous systems. Furthermore, they are not designed to model compliance with data protection legislation like the EU/UK General Data Protection Regulation (GDPR), which is fundamental to protecting data owners' privacy as well as to preventing personal data from potential privacy-related attacks. In this article, we survey the existing threat modelling techniques for data privacy threats in autonomous systems and then analyse such techniques from the viewpoint of GDPR compliance. Following the analysis, We employ STRIDE and LINDDUN in autonomous cars, a specific use-case of autonomous systems, to scrutinise the challenges and gaps of the existing techniques when modelling data privacy threats. Prospective research directions for refining data privacy threats & GDPR-compliance modelling techniques for autonomous systems are also presented.

show abstract

Towards Automated Threat Modeling of Cyber-Physical Systems

Cited by 8 publications

References 27 publications

Challenges in threat modelling of new space systems: A teleoperation use-case

Challenges in threat modelling of new space systems: A teleoperation use-case

Securing Cloud-Assisted Connected and Autonomous Vehicles: An In-Depth Threat Analysis and Risk Assessment

Data Privacy Threat Modelling for Autonomous Systems: A Survey From the GDPR's Perspective

Contact Info

Product

Resources

About