As more cars connect to the internet and other devices, the automotive market has become a lucrative target for cyberattacks. This has made the industry more vulnerable to security threats. As a result, car manufacturers and governments are working together to reduce risks and prevent cyberattacks in the automotive sector. However, existing attack feasibility models derived from the information technology field may not always provide accurate assessments of the potential risks faced by Vehicle Electronic Control Units in different operating conditions and domains. To address this issue, This paper introduces the PUNCH Softronix and Politecnico di Torino (PSP) framework. This framework is designed to provide accurate assessments compatible with the attack feasibility models defined by the automotive product security standards. The PSP framework utilizes social sentiment analysis to evaluate the real threat risk levels.
PSP Framework: A novel risk assessment method in compliance with ISO/SAE-21434 / Oberti, Franco; Sanchez, Ernesto; Savino, Alessandro; Parisi, Filippo; Di Carlo, Stefano. - ELETTRONICO. - (2023), pp. 60-67. (Intervento presentato al convegno 2023 53rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops (DSN-W) tenutosi a Porto (PRT) nel 27-30 June 2023) [10.1109/DSN-W58399.2023.00031].
PSP Framework: A novel risk assessment method in compliance with ISO/SAE-21434
Oberti, Franco;Sanchez, Ernesto;Savino, Alessandro;Di Carlo, Stefano
2023
Abstract
As more cars connect to the internet and other devices, the automotive market has become a lucrative target for cyberattacks. This has made the industry more vulnerable to security threats. As a result, car manufacturers and governments are working together to reduce risks and prevent cyberattacks in the automotive sector. However, existing attack feasibility models derived from the information technology field may not always provide accurate assessments of the potential risks faced by Vehicle Electronic Control Units in different operating conditions and domains. To address this issue, This paper introduces the PUNCH Softronix and Politecnico di Torino (PSP) framework. This framework is designed to provide accurate assessments compatible with the attack feasibility models defined by the automotive product security standards. The PSP framework utilizes social sentiment analysis to evaluate the real threat risk levels.File | Dimensione | Formato | |
---|---|---|---|
PSP_Framework_A_novel_risk_assessment_method_in_compliance_with_ISO_SAE-21434.pdf
accesso riservato
Tipologia:
2a Post-print versione editoriale / Version of Record
Licenza:
Non Pubblico - Accesso privato/ristretto
Dimensione
6.63 MB
Formato
Adobe PDF
|
6.63 MB | Adobe PDF | Visualizza/Apri Richiedi una copia |
A novel methodology for threat analysis and risk assessment according to ISO-SAE 21434.tex.pdf
accesso aperto
Tipologia:
2. Post-print / Author's Accepted Manuscript
Licenza:
Pubblico - Tutti i diritti riservati
Dimensione
1.24 MB
Formato
Adobe PDF
|
1.24 MB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2981398