Book Image

Automotive Cybersecurity Engineering Handbook

By : Dr. Ahmad MK Nasser
5 (1)
Book Image

Automotive Cybersecurity Engineering Handbook

5 (1)
By: Dr. Ahmad MK Nasser

Overview of this book

Replete with exciting challenges, automotive cybersecurity is an emerging domain, and cybersecurity is a foundational enabler for current and future connected vehicle features. This book addresses the severe talent shortage faced by the industry in meeting the demand for building cyber-resilient systems by consolidating practical topics on securing automotive systems to help automotive engineers gain a competitive edge. The book begins by exploring present and future automotive vehicle architectures, along with relevant threats and the skills essential to addressing them. You’ll then explore cybersecurity engineering methods, focusing on compliance with existing automotive standards while making the process advantageous. The chapters are designed in a way to help you with both the theory and practice of building secure systems while considering the cost, time, and resource limitations of automotive engineering. The concluding chapters take a practical approach to threat modeling automotive systems and teach you how to implement security controls across different vehicle architecture layers. By the end of this book, you'll have learned effective methods of handling cybersecurity risks in any automotive product, from single libraries to entire vehicle architectures.

Related Content you might be interested in

Current Title:

Small book image
Automotive Cybersecurity Engineering Handbook
Dr. Ahmad MK Nasser
Oct, 2023 | 392 pages
Small book image
Practical Internet of Things Security.
Brian Russell | Drew Van Duren
Nov, 2018 | 382 pages
Small book image
Practical Industrial Internet of Things Security
Sravani Bhattacharjee
Jul, 2018 | 324 pages
Small book image
TLS Cryptography In-Depth
Dr Paul Duplys | Dr Roland Schmitz
Jan, 2024 | 712 pages
Table of Contents (15 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1:Understanding the Cybersecurity Relevance of the Vehicle Electrical Architecture
Part 1:Understanding the Cybersecurity Relevance of the Vehicle Electrical Architecture
Free Chapter
2
Chapter 1: Introducing the Vehicle Electrical/Electronic Architecture
Chapter 1: Introducing the Vehicle Electrical/Electronic Architecture
Overview of the basic building blocks of the E/E architecture
Electronic control units
ECU domains
Exploring the in-vehicle network
Sensors and actuators
Exploring the vehicle architecture types
Summary
Answers to discussion points
Further reading
3
Chapter 2: Cybersecurity Basics for Automotive Use Cases
Chapter 2: Cybersecurity Basics for Automotive Use Cases
Exploring the attack classes
Identifying security objectives
Cryptography applied to automotive use cases
Security principles
Summary
Further reading
4
Chapter 3: Threat Landscape against Vehicle Components
Chapter 3: Threat Landscape against Vehicle Components
Threats against external vehicle interfaces
Threats against the E/E topology
Threats against in-vehicle networks
Threats against sensors
Common ECU threats
Summary
References
5
Part 2: Understanding the Secure Engineering Development Process
Part 2: Understanding the Secure Engineering Development Process
6
Chapter 4: Exploring the Landscape of Automotive Cybersecurity Standards
Chapter 4: Exploring the Landscape of Automotive Cybersecurity Standards
Primary standards
Secondary standards
Supporting standards and resources
Summary
References
7
Chapter 5: Taking a Deep Dive into ISO/SAE21434
Chapter 5: Taking a Deep Dive into ISO/SAE21434
Notations
At a glance – the ISO 21434 standard
Organizational cybersecurity management
Planning
Acquisition and integration of supplier components
The concept phase
Design and implementation
Verification testing
Validation testing
Product release
Production planning
Operations and maintenance
End of life
Summary
8
Chapter 6: Interactions Between Functional Safety and Cybersecurity
Chapter 6: Interactions Between Functional Safety and Cybersecurity
A tale of two standards
A unified versus integrated approach
Establishing a foundational understanding of functional safety and cybersecurity
Extending the safety and quality supporting processes
Creating synergies in the concept phase
Finding synergies and conflicts in the design phase
Secure coding practices versus safe coding techniques
Synergies and differences in the testing phase
Summary
References
9
Part 3: Executing the Process to Engineer a Secure Automotive Product
Part 3: Executing the Process to Engineer a Secure Automotive Product
10
Chapter 7: A Practical Threat Modeling Approach for Automotive Systems
Chapter 7: A Practical Threat Modeling Approach for Automotive Systems
The fundamentals of performing an effective TARA
Common pitfalls when preparing a TARA
Defining the appropriate TARA scope
The practical approach
Case study using a digital video recorder (DVR)
Summary
References
11
Chapter 8: Vehicle-Level Security Controls
Chapter 8: Vehicle-Level Security Controls
Choosing cybersecurity controls
Vehicle-level versus ECU-level controls
Policy controls
Secure manufacturing
Secure off-board network communication
Host-based intrusion detection
Network intrusion detection and prevention (NIDP)
Domain separation and filtering
Sensor authentication
Secure software updates
In-vehicle network protection
Securing diagnostic abilities
Secure decommissioning
Summary
Further reading
12
Chapter 9: ECU-Level Security Controls
Chapter 9: ECU-Level Security Controls
Understanding control actions and layers
Exploring policy controls
Exploring hardware controls
Exploring software security controls
Exploring physical security controls
Summary
Further reading
13
Index
Index
Why subscribe?
14
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Secure coding practices versus safe coding techniques

Similar to the design principles, coding guidelines between safety and security have a high degree of correlation. Both safety and security engineering approaches aim to reduce code complexity to prevent defects and vulnerabilities. They both require the usage of language subsets to avoid risky features of the programming language that can introduce unexpected or unwanted behavior. This can be enforced by using static code analysis tools based on MISRA C, CERT C/C++, and AUTOSAR C++. Normally, the toolchains support the safety and security guidelines, allowing the developers to check for all coding rule violations in a single run. When it comes to defensive coding techniques, there is a high degree of overlap between several such techniques:

  • Input validation requires all inputs from external sources to be validated to ensure they conform to the expected formats, ranges, and data types. This can help prevent working on implausible...
Previous Section
End of Section 8
Next Section