Cybersecurity Testing for Automotive Domain: A Survey-Reference-Cited by-同舟云学术

Cybersecurity Testing for Automotive Domain: A Survey

Published:2022-11-26 Issue:23 Volume:22 Page:9211
ISSN:1424-8220
Container-title:Sensors
language:en
Short-container-title:Sensors

Author:

Luo Feng,Zhang Xuan^ORCID,Yang Zhenyu,Jiang Yifan^ORCID,Wang Jiajia,Wu Mingzhi,Feng Wanqiang

Abstract

Modern vehicles are more complex and interconnected than ever before, which also means that attack surfaces for vehicles have increased significantly. Malicious cyberattacks will not only exploit personal privacy and property, but also affect the functional safety of electrical/electronic (E/E) safety-critical systems by controlling the driving functionality, which is life-threatening. Therefore, it is necessary to conduct cybersecurity testing on vehicles to reveal and address relevant security threats and vulnerabilities. Cybersecurity standards and regulations issued in recent years, such as ISO/SAE 21434 and UNECE WP.29 regulations (R155 and R156), also emphasize the indispensability of cybersecurity verification and validation in the development lifecycle but lack specific technical details. Thus, this paper conducts a systematic and comprehensive review of the research and practice in the field of automotive cybersecurity testing, which can provide reference and advice for automotive security researchers and testers. We classify and discuss the security testing methods and testbeds in automotive engineering. Furthermore, we identify gaps and limitations in existing research and point out future challenges.

Funder

the Perspective Study Funding of Nanchang Automotive Institute of Intelligence and New Energy, Tongji University

Publisher

MDPI AG

Subject

Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry

Link

https://www.mdpi.com/1424-8220/22/23/9211/pdf

Reference103 articles.

1. Upstream (2022). Upstream Security Global Automotive Cybersecurity Report 2022, Upstream Security Ltd.

2. Miller, C., and Valasek, C. (2015, January 1–6). Remote exploitation of an unaltered passenger vehicle. Proceedings of the Black Hat USA 2015, Las Vegas, NV, USA.

3. Thing, V.L.L., and Wu, J. (2016, January 15–18). Autonomous Vehicle Security: A Taxonomy of Attacks and Defences. Proceedings of the 2016 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData), Chengdu, China.

4. A Systematic Mapping Study on Security Countermeasures of In-Vehicle Communication Systems;Yu;SAE Int. J. Transp. Cybersecur. Priv.,2021

5. Zhang, Y., Han, S., Zhong, S., Shi, P., and Shao, X. (2019). Security and Privacy in New Computing Environments, Proceedings of the International Conference on Security and Privacy in New Computing Environments, Tianjin, China, 13–14 April 2019, Springer.

Cited by 12 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Penetration Testing of In-Vehicle Infotainment Systems in Connected Vehicles;2024 IEEE Vehicular Networking Conference (VNC);2024-05-29

2. Introduction to the Special Issue on Automotive CPS Safety & Security: Part 2;ACM Transactions on Cyber-Physical Systems;2024-04-30

3. Exploring Smart Contracts based on Web 3.0 Applications with respect to Vulnerability Detection Mechanisms;2024 International Conference on Computing and Data Science (ICCDS);2024-04-26

4. Intrusion Detection Systems in Automotive Ethernet Networks: Challenges, Opportunities and Future Research Trends;IEEE Internet of Things Magazine;2024-03

5. Fostering Cyber Resilience in Europe: An In-Depth Exploration of the Cyber Resilience Act;Communications in Computer and Information Science;2024