Open Problems when Mapping Automotive Security Levels to System Requirements

Thomas Rosenstatter, Tomas Olovsson

2018

Abstract

Securing the vehicle has become an important matter in the automotive industry. The communication of vehicles increases tremendously, they communicate with each other and to the infrastructure, they will be remotely diagnosed and provide the users with third-party applications. Given these areas of application, it is evident that a security standard for the automotive domain that considers security from the beginning of the development phase to the operational and maintenance phases is needed. Proposed security models in the automotive domain describe how to derive different security levels that indicate the demand on security, but do not further provide methods that map these levels to predefined system requirements nor security mechanisms. We continue at this point and describe open problems that need to be addressed in a prospective security framework for the automotive domain. Based on a study of several safety and security standards from other areas as well as suggested automotive security models, we propose an appropriate representation of security levels which is similar to, and will work in parallel with traditional safety, and a method to perform the mapping to a set of predefined system requirements, design rules and security mechanisms.

Download


Paper Citation


in Harvard Style

Rosenstatter T. and Olovsson T. (2018). Open Problems when Mapping Automotive Security Levels to System Requirements.In Proceedings of the 4th International Conference on Vehicle Technology and Intelligent Transport Systems - Volume 1: VEHITS, ISBN 978-989-758-293-6, pages 251-260. DOI: 10.5220/0006665302510260


in Bibtex Style

@conference{vehits18,
author={Thomas Rosenstatter and Tomas Olovsson},
title={Open Problems when Mapping Automotive Security Levels to System Requirements},
booktitle={Proceedings of the 4th International Conference on Vehicle Technology and Intelligent Transport Systems - Volume 1: VEHITS,},
year={2018},
pages={251-260},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006665302510260},
isbn={978-989-758-293-6},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 4th International Conference on Vehicle Technology and Intelligent Transport Systems - Volume 1: VEHITS,
TI - Open Problems when Mapping Automotive Security Levels to System Requirements
SN - 978-989-758-293-6
AU - Rosenstatter T.
AU - Olovsson T.
PY - 2018
SP - 251
EP - 260
DO - 10.5220/0006665302510260