Automotive Cybersecurity Standards - Relation and Overview

Christoph Schmittner; Georg Macher

doi:10.1007/978-3-030-26250-1_12

Automotive Cybersecurity Standards - Relation and Overview

Christoph Schmittner^*, Georg Macher

^*Korrespondierende/r Autor/-in für diese Arbeit

Institut für Technische Informatik (4480)

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Today many connected and automated vehicles are available and connectivity features and information sharing is increasingly used for additional vehicle-, maintenance- and traffic safety features. This highly connected networking also increase the attractiveness of an attack on vehicles and the connected infrastructure by hackers with different motivations and thus introduces new risks for vehicle cybersecurity. Highly aware of this fact, the automotive industry has therefore taken high efforts in designing and producing safe and secure connected and automated vehicles. Therefore the domain invested efforts in the development of industry standards to tackle automotive cybersecurity issues and protect their assets. The joint working group of the standardization organizations International Organization for Standardization (ISO) and Society of Automotive Engineers (SAE) has recently established and published a committee draft of the “ISO-SAE Approved new Work Item (AWI) 21434 Road Vehicles - Cybersecurity Engineering” standard. In addition to that SAE is also working on a set of cybersecurity guidance, ISO is addressing specific automotive cybersecurity related topics in additional standards and European Telecommunications Standards Institute (ETSI) and International Telecommunication Union (ITU) is working on security topics of connected vehicles. Further activities are national and international regulations on Automotive Cybersecurity. In the course of this document, a review of the available work and ongoing developments is given and the outline of the automotive cybersecurity framework is given. The aim of this work is to provide a position statement for discussion of available standards, methods and recommendations for automotive cybersecurity.

Originalsprache	englisch
Titel	Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings
Redakteure/-innen	Alexander Romanovsky, Elena Troubitsyna, Ilir Gashi, Erwin Schoitsch, Friedemann Bitsch
Herausgeber (Verlag)	Springer-Verlag Italia
Seiten	153-165
Seitenumfang	13
ISBN (Print)	9783030262495
DOIs	https://doi.org/10.1007/978-3-030-26250-1_12
Publikationsstatus	Veröffentlicht - 1 Jan. 2019
Veranstaltung	38th International Conference on Computer Safety, Reliability and Security: SAFECOMP 2019 - Turku, Finnland Dauer: 10 Sept. 2019 → 13 Sept. 2019

Publikationsreihe

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Band	11699 LNCS
ISSN (Print)	0302-9743
ISSN (elektronisch)	1611-3349

Konferenz

Konferenz	38th International Conference on Computer Safety, Reliability and Security
Land/Gebiet	Finnland
Ort	Turku
Zeitraum	10/09/19 → 13/09/19

ASJC Scopus subject areas

Theoretische Informatik
Informatik (insg.)

Zugriff auf Dokument

10.1007/978-3-030-26250-1_12

Andere Dateien und Links

http://www.scopus.com/inward/record.url?scp=85072880459&partnerID=8YFLogxK

1 Abgeschlossen
1 Laufend

Industrial Informatics
Macher, G., Dobaj, J., Krug, T., Blažević, R. & Veledar, O.
1/09/12 → …
Projekt: Arbeitsgebiet
DRIVES - Entwicklung und Forschung über innovative Berufsbildung Fähigkeiten
Brenner, E. & Macher, G.
1/01/18 → 31/12/21
Projekt: Forschungsprojekt

Dieses zitieren

Schmittner, C., & Macher, G. (2019). Automotive Cybersecurity Standards - Relation and Overview. in A. Romanovsky, E. Troubitsyna, I. Gashi, E. Schoitsch, & F. Bitsch (Hrsg.), Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings (S. 153-165). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Band 11699 LNCS). Springer-Verlag Italia. https://doi.org/10.1007/978-3-030-26250-1_12

Automotive Cybersecurity Standards - Relation and Overview. / Schmittner, Christoph; Macher, Georg.
Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings. Hrsg. / Alexander Romanovsky; Elena Troubitsyna; Ilir Gashi; Erwin Schoitsch; Friedemann Bitsch. Springer-Verlag Italia, 2019. S. 153-165 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Band 11699 LNCS).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Schmittner, C & Macher, G 2019, Automotive Cybersecurity Standards - Relation and Overview. in A Romanovsky, E Troubitsyna, I Gashi, E Schoitsch & F Bitsch (Hrsg.), Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Bd. 11699 LNCS, Springer-Verlag Italia, S. 153-165, 38th International Conference on Computer Safety, Reliability and Security, Turku, Finnland, 10/09/19. https://doi.org/10.1007/978-3-030-26250-1_12

Schmittner C, Macher G. Automotive Cybersecurity Standards - Relation and Overview. in Romanovsky A, Troubitsyna E, Gashi I, Schoitsch E, Bitsch F, Hrsg., Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings. Springer-Verlag Italia. 2019. S. 153-165. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-26250-1_12

Schmittner, Christoph ; Macher, Georg. / Automotive Cybersecurity Standards - Relation and Overview. Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings. Hrsg. / Alexander Romanovsky ; Elena Troubitsyna ; Ilir Gashi ; Erwin Schoitsch ; Friedemann Bitsch. Springer-Verlag Italia, 2019. S. 153-165 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{395e001dfc97472c851fc212bab385c8,

title = "Automotive Cybersecurity Standards - Relation and Overview",

abstract = "Today many connected and automated vehicles are available and connectivity features and information sharing is increasingly used for additional vehicle-, maintenance- and traffic safety features. This highly connected networking also increase the attractiveness of an attack on vehicles and the connected infrastructure by hackers with different motivations and thus introduces new risks for vehicle cybersecurity. Highly aware of this fact, the automotive industry has therefore taken high efforts in designing and producing safe and secure connected and automated vehicles. Therefore the domain invested efforts in the development of industry standards to tackle automotive cybersecurity issues and protect their assets. The joint working group of the standardization organizations International Organization for Standardization (ISO) and Society of Automotive Engineers (SAE) has recently established and published a committee draft of the “ISO-SAE Approved new Work Item (AWI) 21434 Road Vehicles - Cybersecurity Engineering” standard. In addition to that SAE is also working on a set of cybersecurity guidance, ISO is addressing specific automotive cybersecurity related topics in additional standards and European Telecommunications Standards Institute (ETSI) and International Telecommunication Union (ITU) is working on security topics of connected vehicles. Further activities are national and international regulations on Automotive Cybersecurity. In the course of this document, a review of the available work and ongoing developments is given and the outline of the automotive cybersecurity framework is given. The aim of this work is to provide a position statement for discussion of available standards, methods and recommendations for automotive cybersecurity.",

keywords = "Automotive, ISO 21434, ISO 26262, Security analysis",

author = "Christoph Schmittner and Georg Macher",

year = "2019",

month = jan,

day = "1",

doi = "10.1007/978-3-030-26250-1_12",

language = "English",

isbn = "9783030262495",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer-Verlag Italia",

pages = "153--165",

editor = "Alexander Romanovsky and Elena Troubitsyna and Ilir Gashi and Erwin Schoitsch and Friedemann Bitsch",

booktitle = "Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings",

address = "Italy",

note = "38th International Conference on Computer Safety, Reliability and Security : SAFECOMP 2019 ; Conference date: 10-09-2019 Through 13-09-2019",

}

TY - GEN

T1 - Automotive Cybersecurity Standards - Relation and Overview

AU - Schmittner, Christoph

AU - Macher, Georg

PY - 2019/1/1

Y1 - 2019/1/1

N2 - Today many connected and automated vehicles are available and connectivity features and information sharing is increasingly used for additional vehicle-, maintenance- and traffic safety features. This highly connected networking also increase the attractiveness of an attack on vehicles and the connected infrastructure by hackers with different motivations and thus introduces new risks for vehicle cybersecurity. Highly aware of this fact, the automotive industry has therefore taken high efforts in designing and producing safe and secure connected and automated vehicles. Therefore the domain invested efforts in the development of industry standards to tackle automotive cybersecurity issues and protect their assets. The joint working group of the standardization organizations International Organization for Standardization (ISO) and Society of Automotive Engineers (SAE) has recently established and published a committee draft of the “ISO-SAE Approved new Work Item (AWI) 21434 Road Vehicles - Cybersecurity Engineering” standard. In addition to that SAE is also working on a set of cybersecurity guidance, ISO is addressing specific automotive cybersecurity related topics in additional standards and European Telecommunications Standards Institute (ETSI) and International Telecommunication Union (ITU) is working on security topics of connected vehicles. Further activities are national and international regulations on Automotive Cybersecurity. In the course of this document, a review of the available work and ongoing developments is given and the outline of the automotive cybersecurity framework is given. The aim of this work is to provide a position statement for discussion of available standards, methods and recommendations for automotive cybersecurity.

AB - Today many connected and automated vehicles are available and connectivity features and information sharing is increasingly used for additional vehicle-, maintenance- and traffic safety features. This highly connected networking also increase the attractiveness of an attack on vehicles and the connected infrastructure by hackers with different motivations and thus introduces new risks for vehicle cybersecurity. Highly aware of this fact, the automotive industry has therefore taken high efforts in designing and producing safe and secure connected and automated vehicles. Therefore the domain invested efforts in the development of industry standards to tackle automotive cybersecurity issues and protect their assets. The joint working group of the standardization organizations International Organization for Standardization (ISO) and Society of Automotive Engineers (SAE) has recently established and published a committee draft of the “ISO-SAE Approved new Work Item (AWI) 21434 Road Vehicles - Cybersecurity Engineering” standard. In addition to that SAE is also working on a set of cybersecurity guidance, ISO is addressing specific automotive cybersecurity related topics in additional standards and European Telecommunications Standards Institute (ETSI) and International Telecommunication Union (ITU) is working on security topics of connected vehicles. Further activities are national and international regulations on Automotive Cybersecurity. In the course of this document, a review of the available work and ongoing developments is given and the outline of the automotive cybersecurity framework is given. The aim of this work is to provide a position statement for discussion of available standards, methods and recommendations for automotive cybersecurity.

KW - Automotive

KW - ISO 21434

KW - ISO 26262

KW - Security analysis

UR - http://www.scopus.com/inward/record.url?scp=85072880459&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-26250-1_12

DO - 10.1007/978-3-030-26250-1_12

M3 - Conference paper

AN - SCOPUS:85072880459

SN - 9783030262495

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 153

EP - 165

BT - Computer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings

A2 - Romanovsky, Alexander

A2 - Troubitsyna, Elena

A2 - Gashi, Ilir

A2 - Schoitsch, Erwin

A2 - Bitsch, Friedemann

PB - Springer-Verlag Italia

T2 - 38th International Conference on Computer Safety, Reliability and Security

Y2 - 10 September 2019 through 13 September 2019

ER -

Automotive Cybersecurity Standards - Relation and Overview

Abstract

Publikationsreihe

Konferenz

ASJC Scopus subject areas

Zugriff auf Dokument

Andere Dateien und Links

Fingerprint

Projekte

Industrial Informatics

DRIVES - Entwicklung und Forschung über innovative Berufsbildung Fähigkeiten

Dieses zitieren