No Cover Image

Journal article 141 views 8 downloads

A simulation framework for automotive cybersecurity risk assessment

Don Nalin Dharshana Jayaratne Orcid Logo, Suraj Harsha Kamtam Orcid Logo, Siraj Shaikh Orcid Logo, Muhamad Azfar Ramli Orcid Logo, Qian Lu, Rakhi Manohar Mepparambath Orcid Logo, Hoang Nguyen Orcid Logo, Abdur Rakib

Simulation Modelling Practice and Theory, Volume: 136, Start page: 103005

Swansea University Authors: Siraj Shaikh Orcid Logo, Hoang Nguyen Orcid Logo

  • 67382.pdf

    PDF | Version of Record

    © 2024 The Author(s). This is an open access article under the CC BY license.

    Download (1.6MB)

Check full text

DOI (Published version): 10.1016/j.simpat.2024.103005

Abstract

Human-initiated disruptions such as cyberattacks on connected vehicles have the potential to cause cascading failures in transport systems, leading to systemic risks. ‘ISO/SAE 21434:2021 Road vehicles - Cybersecurity engineering’ is the current standard for risk management of road vehicles. However,...

Full description

Published in: Simulation Modelling Practice and Theory
ISSN: 1569-190X
Published: Elsevier BV 2024
Online Access: Check full text

URI: https://cronfa.swan.ac.uk/Record/cronfa67382
Tags: Add Tag
No Tags, Be the first to tag this record!
Abstract: Human-initiated disruptions such as cyberattacks on connected vehicles have the potential to cause cascading failures in transport systems, leading to systemic risks. ‘ISO/SAE 21434:2021 Road vehicles - Cybersecurity engineering’ is the current standard for risk management of road vehicles. However, the threat analysis and risk assessment framework given in the standard focuses on asset-level analysis and assessment. Hence, this study develops a novel simulation-based framework to perform threat analysis and risk assessment on connected vehicles from a transport network perspective. The proposed framework is developed based on the ISO/SAE 21434 threat analysis and risk assessment methodology. We demonstrate the applicability and usefulness of the framework through a remote attack via the cellular network on the in-vehicle communication bus system of a connected vehicle to show the potential impacts on the transport network. Based on the findings of our case studies, we exemplify how cyberattacks on individual system components of a connected vehicle have the potential to cause systemic failures.
Keywords: Connected vehicles; Automotive cybersecurity; Risk assessment; Simulation
College: Faculty of Science and Engineering
Funders: This work was supported by Coventry University and the A*STAR Research Attachment Programme (ARAP) .
Start Page: 103005

Similar Items