Threat modelling for future vehicles : on identifying and analysing threats for future autonomous and connected vehicles

Winsen, Stijn van (2017) Threat modelling for future vehicles : on identifying and analysing threats for future autonomous and connected vehicles.

[img]
Preview
PDF
5MB
Abstract:Modern day vehicles contain many IT components that have been designed for isolated vehicles. The shift towards vehicles that are connected to other devices creates an increased attack surface for attackers. Together with a shift towards more autonomous vehicles, which introduce more cyber-physical systems, it becomes evident that the IT in vehicles needs to be properly secured. Vehicle manufacturers have only recently started to incorporate security in the design process, and lack techniques to do this. This thesis therefore proposes a composite threat model focused on identifying all threats under the assumption that the system is already breached. The proposed composite threat model consists of two steps that a security expert within a vehicle manufacturer should follow for all relevant applications or systems. Since our model focuses on identifying all possible threats, the main recommendations from the validation include creating a tool that can help a security expert in identifying the possible threats, and in particular help in reducing irrelevant threats, as well as finding a way to make the results sellable to management. With this composite threat model, security experts can identify and analyse their vehicles for possible threats and make their vehicles more secure, as is evidently needed for future vehicles.
Item Type:Essay (Master)
Clients:
KPMG, Amstelveen, Netherlands
Faculty:EEMCS: Electrical Engineering, Mathematics and Computer Science
Subject:54 computer science
Programme:Computer Science MSc (60300)
Link to this item:http://purl.utwente.nl/essays/71792
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page