Next Article in Journal
Design of Hybrid Wired/Wireless Fieldbus Network for Turbine Power Generation System
Next Article in Special Issue
Introduction to the Special Issue on Evaluating the Security of Complex Systems
Previous Article in Journal / Special Issue
A Framework for Measuring Security as a System Property in Cyberphysical Systems
Article Menu

Export Article

Open AccessArticle
Information 2016, 7(3), 36; doi:10.3390/info7030036

Standard Compliant Hazard and Threat Analysis for the Automotive Domain

1
Software Engineering, Technical University Munich (TUM), Boltzmannstr. 3, Garching bei Muenchen 85748, Germany
2
Institute of Energy Efficient Mobility, University of Applied Sciences, Moltkestrasse 30, Karlsruhe 76133, Germany
*
Authors to whom correspondence should be addressed.
Academic Editor: Eduardo B. Fernandez
Received: 14 February 2016 / Revised: 5 May 2016 / Accepted: 14 June 2016 / Published: 23 June 2016
(This article belongs to the Special Issue Evaluating the Security of Complex Systems)
View Full-Text   |   Download PDF [809 KB, uploaded 23 June 2016]   |  

Abstract

The automotive industry has successfully collaborated to release the ISO 26262 standard for developing safe software for cars. The standard describes in detail how to conduct hazard analysis and risk assessments to determine the necessary safety measures for each feature. However, the standard does not concern threat analysis for malicious attackers or how to select appropriate security countermeasures. We propose the application of ISO 27001 for this purpose and show how it can be applied together with ISO 26262. We show how ISO 26262 documentation can be re-used and enhanced to satisfy the analysis and documentation demands of the ISO 27001 standard. We illustrate our approach based on an electronic steering column lock system. View Full-Text
Keywords: security standard; safety standard; compliance; ISO 27001; ISO 26262; automotive security security standard; safety standard; compliance; ISO 27001; ISO 26262; automotive security
Figures

This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. (CC BY 4.0).

Scifeed alert for new publications

Never miss any articles matching your research from any publisher
  • Get alerts for new papers matching your research
  • Find out the new papers from selected authors
  • Updated daily for 49'000+ journals and 6000+ publishers
  • Define your Scifeed now

SciFeed Share & Cite This Article

MDPI and ACS Style

Beckers, K.; Dürrwang, J.; Holling, D. Standard Compliant Hazard and Threat Analysis for the Automotive Domain. Information 2016, 7, 36.

Show more citation formats Show less citations formats

Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Related Articles

Article Metrics

Article Access Statistics

1

Comments

[Return to top]
Information EISSN 2078-2489 Published by MDPI AG, Basel, Switzerland RSS E-Mail Table of Contents Alert
Back to Top