Book Image

Automotive Cybersecurity Engineering Handbook

By : Dr. Ahmad MK Nasser
5 (1)
Book Image

Automotive Cybersecurity Engineering Handbook

5 (1)
By: Dr. Ahmad MK Nasser

Overview of this book

Replete with exciting challenges, automotive cybersecurity is an emerging domain, and cybersecurity is a foundational enabler for current and future connected vehicle features. This book addresses the severe talent shortage faced by the industry in meeting the demand for building cyber-resilient systems by consolidating practical topics on securing automotive systems to help automotive engineers gain a competitive edge. The book begins by exploring present and future automotive vehicle architectures, along with relevant threats and the skills essential to addressing them. You’ll then explore cybersecurity engineering methods, focusing on compliance with existing automotive standards while making the process advantageous. The chapters are designed in a way to help you with both the theory and practice of building secure systems while considering the cost, time, and resource limitations of automotive engineering. The concluding chapters take a practical approach to threat modeling automotive systems and teach you how to implement security controls across different vehicle architecture layers. By the end of this book, you'll have learned effective methods of handling cybersecurity risks in any automotive product, from single libraries to entire vehicle architectures.

Related Content you might be interested in

Current Title:

Small book image
Automotive Cybersecurity Engineering Handbook
Dr. Ahmad MK Nasser
Oct, 2023 | 392 pages
Small book image
Practical Internet of Things Security.
Brian Russell | Drew Van Duren
Nov, 2018 | 382 pages
Small book image
Practical Industrial Internet of Things Security
Sravani Bhattacharjee
Jul, 2018 | 324 pages
Small book image
TLS Cryptography In-Depth
Dr Paul Duplys | Dr Roland Schmitz
Jan, 2024 | 712 pages
Table of Contents (15 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1:Understanding the Cybersecurity Relevance of the Vehicle Electrical Architecture
Part 1:Understanding the Cybersecurity Relevance of the Vehicle Electrical Architecture
Free Chapter
2
Chapter 1: Introducing the Vehicle Electrical/Electronic Architecture
Chapter 1: Introducing the Vehicle Electrical/Electronic Architecture
Overview of the basic building blocks of the E/E architecture
Electronic control units
ECU domains
Exploring the in-vehicle network
Sensors and actuators
Exploring the vehicle architecture types
Summary
Answers to discussion points
Further reading
3
Chapter 2: Cybersecurity Basics for Automotive Use Cases
Chapter 2: Cybersecurity Basics for Automotive Use Cases
Exploring the attack classes
Identifying security objectives
Cryptography applied to automotive use cases
Security principles
Summary
Further reading
4
Chapter 3: Threat Landscape against Vehicle Components
Chapter 3: Threat Landscape against Vehicle Components
Threats against external vehicle interfaces
Threats against the E/E topology
Threats against in-vehicle networks
Threats against sensors
Common ECU threats
Summary
References
5
Part 2: Understanding the Secure Engineering Development Process
Part 2: Understanding the Secure Engineering Development Process
6
Chapter 4: Exploring the Landscape of Automotive Cybersecurity Standards
Chapter 4: Exploring the Landscape of Automotive Cybersecurity Standards
Primary standards
Secondary standards
Supporting standards and resources
Summary
References
7
Chapter 5: Taking a Deep Dive into ISO/SAE21434
Chapter 5: Taking a Deep Dive into ISO/SAE21434
Notations
At a glance – the ISO 21434 standard
Organizational cybersecurity management
Planning
Acquisition and integration of supplier components
The concept phase
Design and implementation
Verification testing
Validation testing
Product release
Production planning
Operations and maintenance
End of life
Summary
8
Chapter 6: Interactions Between Functional Safety and Cybersecurity
Chapter 6: Interactions Between Functional Safety and Cybersecurity
A tale of two standards
A unified versus integrated approach
Establishing a foundational understanding of functional safety and cybersecurity
Extending the safety and quality supporting processes
Creating synergies in the concept phase
Finding synergies and conflicts in the design phase
Secure coding practices versus safe coding techniques
Synergies and differences in the testing phase
Summary
References
9
Part 3: Executing the Process to Engineer a Secure Automotive Product
Part 3: Executing the Process to Engineer a Secure Automotive Product
10
Chapter 7: A Practical Threat Modeling Approach for Automotive Systems
Chapter 7: A Practical Threat Modeling Approach for Automotive Systems
The fundamentals of performing an effective TARA
Common pitfalls when preparing a TARA
Defining the appropriate TARA scope
The practical approach
Case study using a digital video recorder (DVR)
Summary
References
11
Chapter 8: Vehicle-Level Security Controls
Chapter 8: Vehicle-Level Security Controls
Choosing cybersecurity controls
Vehicle-level versus ECU-level controls
Policy controls
Secure manufacturing
Secure off-board network communication
Host-based intrusion detection
Network intrusion detection and prevention (NIDP)
Domain separation and filtering
Sensor authentication
Secure software updates
In-vehicle network protection
Securing diagnostic abilities
Secure decommissioning
Summary
Further reading
12
Chapter 9: ECU-Level Security Controls
Chapter 9: ECU-Level Security Controls
Understanding control actions and layers
Exploring policy controls
Exploring hardware controls
Exploring software security controls
Exploring physical security controls
Summary
Further reading
13
Index
Index
Why subscribe?
14
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Securing diagnostic abilities

During development and maintenance, diagnostic and debug services are seen as lifesavers when it comes to identifying and troubleshooting vehicle issues. However, with this ability comes the risk of abuse. Diagnostic services in the hands of an attacker can pose serious risks to the vehicle data and control functions. This can cause unsafe actuation while the vehicle is in motion or tampering with diagnostic records or settings such as mileage manipulation or emission records tampering.

There are two strategies to protect the vehicle from the misuse of diagnostic services:

  • Disable diagnostic services where they are not needed: The first type of control entails accounting for all diagnostic service protocols and features in the vehicle. This includes ISO 14229 UDS-based diagnostics, XCP calibration and flashing, and any proprietary diagnostic routines that an ECU supplier may enable during development or manufacturing. Services that can be eliminated...
Previous Section
End of Section 13
Next Section