Conference Paper/Proceeding/Abstract 482 views
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles
Luis-Pedro Cobos,
Alastair R. Ruddle,
Giedre Sabaliauskaite 
Proceedings of the 31st European Safety and Reliability Conference (ESREL 2021)
Swansea University Author:
Giedre Sabaliauskaite
Full text not available from this repository: check for access using links below.
DOI (Published version): 10.3850/978-981-18-2016-8_412-cd
Abstract
Increases in the connectivity of vehicles and automation of driving functions, with the goal of fully automated driving, are expected to bring many benefits to individuals and wider society. However, these technologies may also create new cybersecurity threats to vehicle user privacy, the finances o...
| Published in: | Proceedings of the 31st European Safety and Reliability Conference (ESREL 2021) |
|---|---|
| ISBN: | 978-981-18-2016-8 |
| Published: |
Singapore
Research Publishing Services
2021
|
| URI: | https://cronfa.swan.ac.uk/Record/cronfa61835 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| first_indexed |
2022-12-01T13:07:00Z |
|---|---|
| last_indexed |
2023-01-13T19:22:51Z |
| id |
cronfa61835 |
| recordtype |
SURis |
| fullrecord |
<?xml version="1.0"?><rfc1807><datestamp>2022-12-01T13:07:23.6082430</datestamp><bib-version>v2</bib-version><id>61835</id><entry>2022-11-09</entry><title>Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles</title><swanseaauthors><author><sid>6a674e2dbda3ec5f20599ce38199a7c3</sid><ORCID>0000-0003-1183-7001</ORCID><firstname>Giedre</firstname><surname>Sabaliauskaite</surname><name>Giedre Sabaliauskaite</name><active>true</active><ethesisStudent>false</ethesisStudent></author></swanseaauthors><date>2022-11-09</date><deptcode>SCS</deptcode><abstract>Increases in the connectivity of vehicles and automation of driving functions, with the goal of fully automated driving, are expected to bring many benefits to individuals and wider society. However, these technologies may also create new cybersecurity threats to vehicle user privacy, the finances of vehicle users and mobility service operators, and even the physical safety of vehicle occupants and other road users. Assuring the cybersecurity of future vehicles will therefore be key to achieving the acceptability of these new automotive technologies to society. However, traditional prescriptive assurance methods will not work for vehicle cybersecurity, due to the evolving threats, through-life software updates, and the deployment of artificial intelligence techniques. Cybersecurity regulations that are goal-oriented and risk-based, like those increasingly used in safety engineering for complex systems, are now mandated in recent vehicle type approval regulations. This results in many new assurance challenges, which will not be limited purely to cybersecurity. In particular, emerging standards have proposed that an assurance case approach should be adopted in relation to cybersecurity. This paper therefore proposes a novel cybersecurity case framework that adapts existing approaches from safety engineering, emphasizes the limitations of the analysis through eliminative argumentation, and merges in the attack-defence tree techniques used in cybersecurity engineering, with the aim of providing a better reflection of the some of the uncertainties in the cybersecurity risk analysis.</abstract><type>Conference Paper/Proceeding/Abstract</type><journal>Proceedings of the 31st European Safety and Reliability Conference (ESREL 2021)</journal><volume/><journalNumber/><paginationStart/><paginationEnd/><publisher>Research Publishing Services</publisher><placeOfPublication>Singapore</placeOfPublication><isbnPrint>978-981-18-2016-8</isbnPrint><isbnElectronic/><issnPrint/><issnElectronic/><keywords/><publishedDay>1</publishedDay><publishedMonth>1</publishedMonth><publishedYear>2021</publishedYear><publishedDate>2021-01-01</publishedDate><doi>10.3850/978-981-18-2016-8_412-cd</doi><url/><notes/><college>COLLEGE NANME</college><department>Computer Science</department><CollegeCode>COLLEGE CODE</CollegeCode><DepartmentCode>SCS</DepartmentCode><institution>Swansea University</institution><apcterm/><funders/><projectreference/><lastEdited>2022-12-01T13:07:23.6082430</lastEdited><Created>2022-11-09T22:43:35.9017891</Created><path><level id="1">Faculty of Science and Engineering</level><level id="2">School of Mathematics and Computer Science - Computer Science</level></path><authors><author><firstname>Luis-Pedro</firstname><surname>Cobos</surname><order>1</order></author><author><firstname>Alastair R.</firstname><surname>Ruddle</surname><order>2</order></author><author><firstname>Giedre</firstname><surname>Sabaliauskaite</surname><orcid>0000-0003-1183-7001</orcid><order>3</order></author></authors><documents/><OutputDurs/></rfc1807> |
| spelling |
2022-12-01T13:07:23.6082430 v2 61835 2022-11-09 Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles 6a674e2dbda3ec5f20599ce38199a7c3 0000-0003-1183-7001 Giedre Sabaliauskaite Giedre Sabaliauskaite true false 2022-11-09 SCS Increases in the connectivity of vehicles and automation of driving functions, with the goal of fully automated driving, are expected to bring many benefits to individuals and wider society. However, these technologies may also create new cybersecurity threats to vehicle user privacy, the finances of vehicle users and mobility service operators, and even the physical safety of vehicle occupants and other road users. Assuring the cybersecurity of future vehicles will therefore be key to achieving the acceptability of these new automotive technologies to society. However, traditional prescriptive assurance methods will not work for vehicle cybersecurity, due to the evolving threats, through-life software updates, and the deployment of artificial intelligence techniques. Cybersecurity regulations that are goal-oriented and risk-based, like those increasingly used in safety engineering for complex systems, are now mandated in recent vehicle type approval regulations. This results in many new assurance challenges, which will not be limited purely to cybersecurity. In particular, emerging standards have proposed that an assurance case approach should be adopted in relation to cybersecurity. This paper therefore proposes a novel cybersecurity case framework that adapts existing approaches from safety engineering, emphasizes the limitations of the analysis through eliminative argumentation, and merges in the attack-defence tree techniques used in cybersecurity engineering, with the aim of providing a better reflection of the some of the uncertainties in the cybersecurity risk analysis. Conference Paper/Proceeding/Abstract Proceedings of the 31st European Safety and Reliability Conference (ESREL 2021) Research Publishing Services Singapore 978-981-18-2016-8 1 1 2021 2021-01-01 10.3850/978-981-18-2016-8_412-cd COLLEGE NANME Computer Science COLLEGE CODE SCS Swansea University 2022-12-01T13:07:23.6082430 2022-11-09T22:43:35.9017891 Faculty of Science and Engineering School of Mathematics and Computer Science - Computer Science Luis-Pedro Cobos 1 Alastair R. Ruddle 2 Giedre Sabaliauskaite 0000-0003-1183-7001 3 |
| title |
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles |
| spellingShingle |
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles Giedre Sabaliauskaite |
| title_short |
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles |
| title_full |
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles |
| title_fullStr |
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles |
| title_full_unstemmed |
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles |
| title_sort |
Cybersecurity Assurance Challenges for Future Connected and Automated Vehicles |
| author_id_str_mv |
6a674e2dbda3ec5f20599ce38199a7c3 |
| author_id_fullname_str_mv |
6a674e2dbda3ec5f20599ce38199a7c3_***_Giedre Sabaliauskaite |
| author |
Giedre Sabaliauskaite |
| author2 |
Luis-Pedro Cobos Alastair R. Ruddle Giedre Sabaliauskaite |
| format |
Conference Paper/Proceeding/Abstract |
| container_title |
Proceedings of the 31st European Safety and Reliability Conference (ESREL 2021) |
| publishDate |
2021 |
| institution |
Swansea University |
| isbn |
978-981-18-2016-8 |
| doi_str_mv |
10.3850/978-981-18-2016-8_412-cd |
| publisher |
Research Publishing Services |
| college_str |
Faculty of Science and Engineering |
| hierarchytype |
|
| hierarchy_top_id |
facultyofscienceandengineering |
| hierarchy_top_title |
Faculty of Science and Engineering |
| hierarchy_parent_id |
facultyofscienceandengineering |
| hierarchy_parent_title |
Faculty of Science and Engineering |
| department_str |
School of Mathematics and Computer Science - Computer Science{{{_:::_}}}Faculty of Science and Engineering{{{_:::_}}}School of Mathematics and Computer Science - Computer Science |
| document_store_str |
0 |
| active_str |
0 |
| description |
Increases in the connectivity of vehicles and automation of driving functions, with the goal of fully automated driving, are expected to bring many benefits to individuals and wider society. However, these technologies may also create new cybersecurity threats to vehicle user privacy, the finances of vehicle users and mobility service operators, and even the physical safety of vehicle occupants and other road users. Assuring the cybersecurity of future vehicles will therefore be key to achieving the acceptability of these new automotive technologies to society. However, traditional prescriptive assurance methods will not work for vehicle cybersecurity, due to the evolving threats, through-life software updates, and the deployment of artificial intelligence techniques. Cybersecurity regulations that are goal-oriented and risk-based, like those increasingly used in safety engineering for complex systems, are now mandated in recent vehicle type approval regulations. This results in many new assurance challenges, which will not be limited purely to cybersecurity. In particular, emerging standards have proposed that an assurance case approach should be adopted in relation to cybersecurity. This paper therefore proposes a novel cybersecurity case framework that adapts existing approaches from safety engineering, emphasizes the limitations of the analysis through eliminative argumentation, and merges in the attack-defence tree techniques used in cybersecurity engineering, with the aim of providing a better reflection of the some of the uncertainties in the cybersecurity risk analysis. |
| published_date |
2021-01-01T04:20:58Z |
| _version_ |
1763754385902403584 |
| score |
11.01753 |