Abstract
Threat analysis and risk assessment are important activities in the cybersecurity life cycle of intelligent vehicles, which provide guarantee for the formation of correct cybersecurity requirements for automotive. Based on some research on threat analysis and risk assessment technologies used in traditional information systems as well as some practical experience in the automotive field, this paper proposes a structured and systematic threat model for intelligent vehicles, based on which the threat analysis and risk assessment process is realized, with the aim of improving some existing methods. Taking a typical vehicle-level security-related business OTA as the example, the model and the analysis process proposed in this paper are practically applied, in which the methods of data-flow-diagram and attack-tree are combinedly used to analyze possible threats to assets of an intelligent vehicle. The workload of threat modeling and risk analysis is evaluated, and the practical significance of improving the analysis efficiency via a software tool is analyzed. The result shows that this model is more comprehensive to achieve a complete analysis, and it is also convenient to be implemented as a software tool.
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
