Next Article in Journal
Quantitative Evaluation of Dense Skeletons for Image Compression
Previous Article in Journal
Multi-Vehicle Simulation in Urban Automated Driving: Technical Implementation and Added Benefit
Previous Article in Special Issue
Importance Analysis of Components of a Multi-Operational-State Power System Using Fault Tree Models
Open AccessFeature PaperArticle

SAVTA: A Hybrid Vehicular Threat Model: Overview and Case Study

1
Department of Electrical and Computer Engineering, Technical University of Munich, 80333 Munich, Germany
2
Institute of Computer and Network Engineering, Technical University of Braunschweig, 38106 Braunschweig, Germany
*
Author to whom correspondence should be addressed.
Information 2020, 11(5), 273; https://doi.org/10.3390/info11050273
Received: 11 March 2020 / Revised: 14 May 2020 / Accepted: 15 May 2020 / Published: 19 May 2020
In recent years, significant developments were introduced within the vehicular domain, evolving the vehicles to become a network of many embedded systems which depend on a set of sensors to interact with each other and with the surrounding environment. While these improvements have increased the safety and incontestability of the automotive system, they have opened the door for new potential security threats which need to be defined, assessed, and mitigated. The SAE J3061 standard has defined threat modeling as a critical step toward the secure development process for vehicle systems, but it did not determine which method could be used to achieve this process. Therefore, many threat modeling approaches were adopted. However, using one individual approach will not identify all the threats which could target the system, and may lead to insufficient mitigation mechanisms. Thus, having complete security requires the usage of a comprehensive threat model which identifies all the potential threats and vulnerabilities. In this work, we tried to revise the existing threat modeling efforts in the vehicular domain. Also, we proposed using a hybrid method called the Software, Asset, Vulnerability, Threat, and Attacker (SAVTA)-centric method to support security analysis for vehicular systems. SAVTA combines different existing threat modeling approaches to create a comprehensive and hybridized threat model. The model is used as an aid to construct general attack trees which illustrate attack vectors that threaten a particular vehicle asset and classify these attacks under different sub-trees. View Full-Text
Keywords: threat modeling; automotive security threat modeling; automotive security
Show Figures

Figure 1

MDPI and ACS Style

Hamad, M.; Prevelakis, V. SAVTA: A Hybrid Vehicular Threat Model: Overview and Case Study. Information 2020, 11, 273.

Show more citation formats Show less citations formats
Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Article Access Map by Country/Region

1
Search more from Scilit
 
Search
Back to TopTop