Book Image

Automotive Cybersecurity Engineering Handbook

By : Dr. Ahmad MK Nasser
5 (1)
Book Image

Automotive Cybersecurity Engineering Handbook

5 (1)
By: Dr. Ahmad MK Nasser

Overview of this book

Replete with exciting challenges, automotive cybersecurity is an emerging domain, and cybersecurity is a foundational enabler for current and future connected vehicle features. This book addresses the severe talent shortage faced by the industry in meeting the demand for building cyber-resilient systems by consolidating practical topics on securing automotive systems to help automotive engineers gain a competitive edge. The book begins by exploring present and future automotive vehicle architectures, along with relevant threats and the skills essential to addressing them. You’ll then explore cybersecurity engineering methods, focusing on compliance with existing automotive standards while making the process advantageous. The chapters are designed in a way to help you with both the theory and practice of building secure systems while considering the cost, time, and resource limitations of automotive engineering. The concluding chapters take a practical approach to threat modeling automotive systems and teach you how to implement security controls across different vehicle architecture layers. By the end of this book, you'll have learned effective methods of handling cybersecurity risks in any automotive product, from single libraries to entire vehicle architectures.

Related Content you might be interested in

Current Title:

Small book image
Automotive Cybersecurity Engineering Handbook
Dr. Ahmad MK Nasser
Oct, 2023 | 392 pages
Small book image
Practical Internet of Things Security.
Brian Russell | Drew Van Duren
Nov, 2018 | 382 pages
Small book image
Practical Industrial Internet of Things Security
Sravani Bhattacharjee
Jul, 2018 | 324 pages
Small book image
TLS Cryptography In-Depth
Dr Paul Duplys | Dr Roland Schmitz
Jan, 2024 | 712 pages
Table of Contents (15 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1:Understanding the Cybersecurity Relevance of the Vehicle Electrical Architecture
Part 1:Understanding the Cybersecurity Relevance of the Vehicle Electrical Architecture
Free Chapter
2
Chapter 1: Introducing the Vehicle Electrical/Electronic Architecture
Chapter 1: Introducing the Vehicle Electrical/Electronic Architecture
Overview of the basic building blocks of the E/E architecture
Electronic control units
ECU domains
Exploring the in-vehicle network
Sensors and actuators
Exploring the vehicle architecture types
Summary
Answers to discussion points
Further reading
3
Chapter 2: Cybersecurity Basics for Automotive Use Cases
Chapter 2: Cybersecurity Basics for Automotive Use Cases
Exploring the attack classes
Identifying security objectives
Cryptography applied to automotive use cases
Security principles
Summary
Further reading
4
Chapter 3: Threat Landscape against Vehicle Components
Chapter 3: Threat Landscape against Vehicle Components
Threats against external vehicle interfaces
Threats against the E/E topology
Threats against in-vehicle networks
Threats against sensors
Common ECU threats
Summary
References
5
Part 2: Understanding the Secure Engineering Development Process
Part 2: Understanding the Secure Engineering Development Process
6
Chapter 4: Exploring the Landscape of Automotive Cybersecurity Standards
Chapter 4: Exploring the Landscape of Automotive Cybersecurity Standards
Primary standards
Secondary standards
Supporting standards and resources
Summary
References
7
Chapter 5: Taking a Deep Dive into ISO/SAE21434
Chapter 5: Taking a Deep Dive into ISO/SAE21434
Notations
At a glance – the ISO 21434 standard
Organizational cybersecurity management
Planning
Acquisition and integration of supplier components
The concept phase
Design and implementation
Verification testing
Validation testing
Product release
Production planning
Operations and maintenance
End of life
Summary
8
Chapter 6: Interactions Between Functional Safety and Cybersecurity
Chapter 6: Interactions Between Functional Safety and Cybersecurity
A tale of two standards
A unified versus integrated approach
Establishing a foundational understanding of functional safety and cybersecurity
Extending the safety and quality supporting processes
Creating synergies in the concept phase
Finding synergies and conflicts in the design phase
Secure coding practices versus safe coding techniques
Synergies and differences in the testing phase
Summary
References
9
Part 3: Executing the Process to Engineer a Secure Automotive Product
Part 3: Executing the Process to Engineer a Secure Automotive Product
10
Chapter 7: A Practical Threat Modeling Approach for Automotive Systems
Chapter 7: A Practical Threat Modeling Approach for Automotive Systems
The fundamentals of performing an effective TARA
Common pitfalls when preparing a TARA
Defining the appropriate TARA scope
The practical approach
Case study using a digital video recorder (DVR)
Summary
References
11
Chapter 8: Vehicle-Level Security Controls
Chapter 8: Vehicle-Level Security Controls
Choosing cybersecurity controls
Vehicle-level versus ECU-level controls
Policy controls
Secure manufacturing
Secure off-board network communication
Host-based intrusion detection
Network intrusion detection and prevention (NIDP)
Domain separation and filtering
Sensor authentication
Secure software updates
In-vehicle network protection
Securing diagnostic abilities
Secure decommissioning
Summary
Further reading
12
Chapter 9: ECU-Level Security Controls
Chapter 9: ECU-Level Security Controls
Understanding control actions and layers
Exploring policy controls
Exploring hardware controls
Exploring software security controls
Exploring physical security controls
Summary
Further reading
13
Index
Index
Why subscribe?
14
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Introducing the Vehicle Electrical/Electronic Architecture

The vehicle Electrical/Electronic (E/E) architecture refers to the set of electronic components, electrical wire harnesses, networking technologies, and software applications that coalesce to manage a diverse suite of vehicle functions tasked with controlling the vehicle and user experience.

While the combination of software and electronics has revolutionized how vehicle features are designed and deployed, it gradually produced a rich attack surface that made vehicles vulnerable to cyber threats. Therefore, understanding the fundamental concepts of the E/E architecture is a prerequisite to analyzing vehicle security. To help provide the necessary background, first, we will explore the various hardware platforms supported in the electronic control unit (ECU) and the corresponding reference software architectures. Next, we will examine how ECUs can be grouped into domains (which are distinct functional subsystems that have specific responsibilities) along with the networking technologies needed for their communication. With the ECUs and network layers defined, we will turn our attention to the sensors and actuators that enable the vehicle to sense the environment and react to it. Finally, we will put all these components together in the different vehicle architecture topologies while showing current and future trends in this area. Following this hierarchical approach should help us gain perspective on how the vehicle can be attacked.

As we dive through the E/E architecture layers, we will pose a series of questions in the form of discussion points to help you explore threats against your vehicle components. A brief answer list will be provided at the end of this chapter. The next few chapters will offer deeper insights into these discussion points as we navigate the cybersecurity threat landscape.

Note that this chapter does not attempt to offer a comprehensive list of every possible E/E architecture and component, but rather focuses on the aspects that are most relevant to vehicle cybersecurity. If you are well acquainted with vehicle E/E architecture concepts, this chapter can be considered a review to set the stage for cybersecurity analysis.

In this chapter, we will cover the following main topics:

  • Overview of the basic building blocks of the E/E architecture
  • Electronic control units
  • ECU domains
  • Exploring the in-vehicle network
  • Sensors and actuators
  • Exploring the vehicle architecture types
Previous Section
End of Section 1
Next Section