The large amount of Electric/Electronic (E/E) systems in modern vehicles make them vulnerable to cyberattacks. New regulations and standards, such as UNECE R155 and ISO/SAE 21434, aim to tackle this issue by providing tools and workflows that vehicle designers can use to minimize cybersecurity threats. Plenty of research is being carried out in the automotive cybersecurity field, which is rich in assessment methodologies that comply with latest regulations. However, most efforts focus on Connected and Autonomous Vehicles (CAVs), often overlooking other families of vehicles such as Off-Road Vehicles (ORVs) and Defense Vehicles (DVs). These categories face not only many of the same cyber vulnerabilities as CAVs, but also unique cybersecurity challenges due to their special E/E systems. In this work we present a novel cybersecurity assessment methodology based on ADVISE Meta, an ontology-based modeling framework. ADVISE Meta models can be converted into lower-level stochastic models, which can be simulated to compute the probability that the adversaries reach their cybersecurity goals. Our methodology integrates well-established cybersecurity sources such as CAPEC, TAL, and UNECE R155, making it a suitable approach for industrial applications. Moreover, it is well integrated in the Threat Analysis and Risk Assessment (TARA) framework defined in ISO/SAE 21434.
A model-based approach for cybersecurity assessment of off-road and defense vehicles
Kordi Marzieh
;
2025
Abstract
The large amount of Electric/Electronic (E/E) systems in modern vehicles make them vulnerable to cyberattacks. New regulations and standards, such as UNECE R155 and ISO/SAE 21434, aim to tackle this issue by providing tools and workflows that vehicle designers can use to minimize cybersecurity threats. Plenty of research is being carried out in the automotive cybersecurity field, which is rich in assessment methodologies that comply with latest regulations. However, most efforts focus on Connected and Autonomous Vehicles (CAVs), often overlooking other families of vehicles such as Off-Road Vehicles (ORVs) and Defense Vehicles (DVs). These categories face not only many of the same cyber vulnerabilities as CAVs, but also unique cybersecurity challenges due to their special E/E systems. In this work we present a novel cybersecurity assessment methodology based on ADVISE Meta, an ontology-based modeling framework. ADVISE Meta models can be converted into lower-level stochastic models, which can be simulated to compute the probability that the adversaries reach their cybersecurity goals. Our methodology integrates well-established cybersecurity sources such as CAPEC, TAL, and UNECE R155, making it a suitable approach for industrial applications. Moreover, it is well integrated in the Threat Analysis and Risk Assessment (TARA) framework defined in ISO/SAE 21434.| File | Dimensione | Formato | |
|---|---|---|---|
|
Model-based Approach for Cybersecurity Assessment of Off-Road and Defense Vehicles.pdf
accesso aperto
Descrizione: This is the Author Accepted Manuscript (postprint) version of the following paper: bellini U. et al.: "A Model-based Approach for Cybersecurity Assessment of Off-Road and Defense Vehicles", 2025, 2025 55th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops (DSN-W), DOI: 10.1109/DSN-W65791.2025.00056
Tipologia:
Documento in Post-print
Licenza:
Creative commons
Dimensione
823 kB
Formato
Adobe PDF
|
823 kB | Adobe PDF | Visualizza/Apri |
|
A_Model-based_Approach_for_Cybersecurity_Assessment_of_Off-Road_and_Defense_Vehicles.pdf
non disponibili
Descrizione: A Model-based Approach for Cybersecurity Assessment of Off-Road and Defense Vehicles
Tipologia:
Versione Editoriale (PDF)
Licenza:
Copyright dell'editore
Dimensione
876.49 kB
Formato
Adobe PDF
|
876.49 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
