THREATGET: Towards Automated Attack Tree Analysis for Automotive Cybersecurity

Publikation: Beitrag in FachzeitschriftArtikelBegutachtung

Abstract

The automotive domain is moving away from simple isolated vehicles to interconnected networks of heterogeneous systems forming a complex transportation infrastructure. The additional means of communication result in increased attack surfaces which can be exploited by physical as well as remote attackers if not secured thoroughly. Thus, the automotive sector is exposed to new cyber risk factors. Consequently, joint approaches targeting securing vehicles and infrastructure by identifying and mitigating potential threats for the automotive domain have been developed in several research projects. This paper builds on developments originating from these projects and correlated standards and regulations. Moreover, the extension of an existing threat modeling tool—THREATGET—with a novel automated approach toward attack propagation will be introduced. Therefore, we will conduct an analysis of a real-world example from the automotive domain. Furthermore, we will identify and analyze potential threats and discuss their accumulation to automatically generate an attack tree.
OriginalspracheEnglisch
Seiten (von - bis)1-28
Seitenumfang28
FachzeitschriftInformation
Volume14
Issue1
DOIs
PublikationsstatusVeröffentlicht - 2022

Research Field

  • Dependable Systems Engineering

Fingerprint

Untersuchen Sie die Forschungsthemen von „THREATGET: Towards Automated Attack Tree Analysis for Automotive Cybersecurity“. Zusammen bilden sie einen einzigartigen Fingerprint.

Diese Publikation zitieren