Analysis of Security Vulnerability Levels of In-Vehicle Network Topologies Applying Graph Representations

Zsombor Petho,Árpád Torok,Intiyaz Khan

doi:10.1007/s10836-021-05973-x

Zsombor Petho, Árpád Torok + Show 1 more

Open Access

PDF Available

https://doi.org/10.1007/s10836-021-05973-x

Copy DOI

Export

Save

Cite

Abstract
Highlights/Summary
Full-Text PDF
Similar Papers

Abstract

Listen

This article investigates cybersecurity issues related to in-vehicle communication networks. In-vehicle communication network security is evaluated based on the protection characteristics of the network components and the topology of the network. The automotive communication network topologies are represented as undirected weighted graphs, and their vulnerability is estimated based on the specific characteristics of the generated graph. Thirteen different vehicle models have been investigated to compare the vulnerability levels of the in-vehicle network using the Dijkstra's shortest route algorithm. An important advantage of the proposed method is that it is in accordance with the most relevant security evaluation models. On the other hand, the newly introduced approach considers the Secure-by-Design concept principles.

Highlights

Automotive security is a rapidly developing field, as the risk of securing automotive systems is increasing
In the in-vehicle network (IVN) protocol design process, automotive engineers have not addressed the cybersecurity issues adequately, instead, they focused on the safety aspects
We briefly present a security analysis and evaluation procedure developed during a previous research process using an alternative method to compare previous results with the current results

Summary

Introduction

Automotive security is a rapidly developing field, as the risk of securing automotive systems is increasing. Safety of vehicles from accidents and cyberattacks will become the priority research orientation of the future development processes. In the in-vehicle network (IVN) protocol design process, automotive engineers have not addressed the cybersecurity issues adequately, instead, they focused on the safety aspects. Robustness, reliability and an acceptable bandwidth were the key research objectives in this subdomain. Automotive trends have shown that transport and vehicles will be automated and communicate with each other to increase road safety, and the number of ECUs (Electronic Control Units) with ever-expanding ADAS (Advanced Driver Assistance Systems) functions will continue to grow. The growing number of ECUs implies that the required bandwidth is to widen, more subnets are present, and more

Objectives

Methods

Results