SARA: Security Automotive Risk Analysis Method
| Title | SARA: Security Automotive Risk Analysis Method |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Monteuuis, Jean-Philippe, Boudguiga, Aymen, Zhang, Jun, Labiod, Houda, Servel, Alain, Urien, Pascal |
| Conference Name | Proceedings of the 4th ACM Workshop on Cyber-Physical System Security |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-5755-5 |
| Keywords | automotive security, composability, control theory, pubcrawl, resilience, Resiliency, risk assessment, security, security requirements, threat analysis |
| Abstract | Connected and automated vehicles aim to improve the comfort and the safety of the driver and passengers. To this end, car manufacturers continually improve actual standardized methods to ensure their customers safety, privacy, and vehicles security. However, these methods do not support fully autonomous vehicles, linkability and confusion threats. To address such gaps, we propose a systematic threat analysis and risk assessment framework, SARA, which comprises an improved threat model, a new attack method/asset map, the involvement of the attacker in the attack tree, and a new driving system observation metric. Finally, we demonstrate its feasibility in assessing risk with two use cases: Vehicle Tracking and Comfortable Emergency Brake Failure. |
| URL | https://dl.acm.org/citation.cfm?doid=3198458.3198465 |
| DOI | 10.1145/3198458.3198465 |
| Citation Key | monteuuis_sara:_2018 |