An Open Software-Based Framework for Automotive Cybersecurity Testing

Thomas Faschang*, Georg Macher

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference paperpeer-review

Abstract

With the rise of cyberattacks in the last years, cybersecurity is of high importance in the context of the automotive domain [10, 22]. As current cars are more connected and reliant on embedded system technologies, the need for security engineering has tremendously accelerated. While ISO/SAE 21434 is available as a security engineering standard for the domain, frameworks and tools for cybersecurity training and testing of concepts are scarce. Automotive cybersecurity testbeds provide a specified and controlled environment for testing, evaluating, and learning cybersecurity solutions for vehicles, allowing researchers and engineers to be trained and upskill faster. Therefore, this work focuses on an embedded automotive systems framework for cybersecurity testing. The presented framework simulates a CAN controller network and allows researchers and engineers to test attack vectors and mitigation methods in a simulated environment, providing also basic implementations for the most common attack types. The presented framework is extendable for training and testing purposes with series controllers and real-world demonstrators.

Original languageEnglish
Title of host publicationSystems, Software and Services Process Improvement - 30th European Conference, EuroSPI 2023, Proceedings
EditorsMurat Yilmaz, Paul Clarke, Andreas Riel, Richard Messnarz
Place of PublicationCham
PublisherSpringer Science and Business Media Deutschland GmbH
Pages316-328
Number of pages13
ISBN (Print)9783031423062
DOIs
Publication statusPublished - 2023
Event30th European Conference on Systems, Software and Services Process Improvement: EuroSPI 2023 - Grenoble, France
Duration: 30 Aug 20231 Sept 2023

Publication series

NameCommunications in Computer and Information Science
Volume1890 CCIS
ISSN (Print)1865-0929
ISSN (Electronic)1865-0937

Conference

Conference30th European Conference on Systems, Software and Services Process Improvement
Abbreviated titleEuroSPI 2023
Country/TerritoryFrance
CityGrenoble
Period30/08/231/09/23

Keywords

  • Automotive Cybersecurity
  • Controller Area Network
  • Software Security Testbed

ASJC Scopus subject areas

  • General Computer Science
  • General Mathematics

Fingerprint

Dive into the research topics of 'An Open Software-Based Framework for Automotive Cybersecurity Testing'. Together they form a unique fingerprint.

Cite this