Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles

Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles

Modern vehicles are no longer merely mechanical systems but are monitored and controlled by various electronic systems. Safety-critical systems of connected vehicles become vulnerable to cyberattacks because of increasing interconnection. At present, the security risk analysis of connected vehicles...

Full description

Bibliographic Details
Main Authors: Feng Luo, Shuo Hou, Xuan Zhang, Zhenyu Yang, Wenwen Pan
Format: Article
Language:English
Published: MDPI AG 2020-08-01
Series:Electronics
Subjects:
connected vehicle
safety-critical system
security risk analysis
Markov decision process
probabilistic model checking
Online Access:https://www.mdpi.com/2079-9292/9/8/1242
id doaj-efbf92a3fca640458ba605bf91662433
record_format Article
spelling doaj-efbf92a3fca640458ba605bf916624332020-11-25T03:15:36ZengMDPI AGElectronics2079-92922020-08-0191242124210.3390/electronics9081242Security Risk Analysis Approach for Safety-Critical Systems of Connected VehiclesFeng Luo0Shuo Hou1Xuan Zhang2Zhenyu Yang3Wenwen Pan4School of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaModern vehicles are no longer merely mechanical systems but are monitored and controlled by various electronic systems. Safety-critical systems of connected vehicles become vulnerable to cyberattacks because of increasing interconnection. At present, the security risk analysis of connected vehicles is mainly based on qualitative methods, while these methods are usually subjective and lack consideration for functional safety. In order to solve this problem, we propose in this paper a security risk analysis framework for connected vehicles based on formal methods. Firstly, we introduce the electronic and electrical architecture of the connected vehicle and analyze the attack surfaces of the in-vehicle safety-critical systems from three levels of sensors, in-vehicle networks, and controllers. Secondly, we propose a method to model the target of evaluation (i.e., in-vehicle safety-critical system) as a Markov decision process and use probabilistic computation tree logic to formally describe its security properties. Then, a probabilistic model checker PRISM is used to analyze the security risk of target systems quantitatively according to security properties. Finally, we apply the proposed approach to analyze and compare the security risks of the collision warning system under a distributed and centralized electrical and electronic architecture. In addition, from a practical point of view, we propose a Markov model generation method based on a SysML activity diagram, which can simplify our modeling process. The evaluation results show that we can have a quantitative understanding of the security risks at the system level in the early stage of system design.https://www.mdpi.com/2079-9292/9/8/1242connected vehiclesafety-critical systemsecurity risk analysisMarkov decision processprobabilistic model checking
collection DOAJ
language English
format Article
sources DOAJ
author Feng Luo
Shuo Hou
Xuan Zhang
Zhenyu Yang
Wenwen Pan
spellingShingle Feng Luo
Shuo Hou
Xuan Zhang
Zhenyu Yang
Wenwen Pan
Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles
Electronics
connected vehicle
safety-critical system
security risk analysis
Markov decision process
probabilistic model checking
author_facet Feng Luo
Shuo Hou
Xuan Zhang
Zhenyu Yang
Wenwen Pan
author_sort Feng Luo
title Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles
title_short Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles
title_full Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles
title_fullStr Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles
title_full_unstemmed Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles
title_sort security risk analysis approach for safety-critical systems of connected vehicles
publisher MDPI AG
series Electronics
issn 2079-9292
publishDate 2020-08-01
description Modern vehicles are no longer merely mechanical systems but are monitored and controlled by various electronic systems. Safety-critical systems of connected vehicles become vulnerable to cyberattacks because of increasing interconnection. At present, the security risk analysis of connected vehicles is mainly based on qualitative methods, while these methods are usually subjective and lack consideration for functional safety. In order to solve this problem, we propose in this paper a security risk analysis framework for connected vehicles based on formal methods. Firstly, we introduce the electronic and electrical architecture of the connected vehicle and analyze the attack surfaces of the in-vehicle safety-critical systems from three levels of sensors, in-vehicle networks, and controllers. Secondly, we propose a method to model the target of evaluation (i.e., in-vehicle safety-critical system) as a Markov decision process and use probabilistic computation tree logic to formally describe its security properties. Then, a probabilistic model checker PRISM is used to analyze the security risk of target systems quantitatively according to security properties. Finally, we apply the proposed approach to analyze and compare the security risks of the collision warning system under a distributed and centralized electrical and electronic architecture. In addition, from a practical point of view, we propose a Markov model generation method based on a SysML activity diagram, which can simplify our modeling process. The evaluation results show that we can have a quantitative understanding of the security risks at the system level in the early stage of system design.
topic connected vehicle
safety-critical system
security risk analysis
Markov decision process
probabilistic model checking
url https://www.mdpi.com/2079-9292/9/8/1242
work_keys_str_mv AT fengluo securityriskanalysisapproachforsafetycriticalsystemsofconnectedvehicles
AT shuohou securityriskanalysisapproachforsafetycriticalsystemsofconnectedvehicles
AT xuanzhang securityriskanalysisapproachforsafetycriticalsystemsofconnectedvehicles
AT zhenyuyang securityriskanalysisapproachforsafetycriticalsystemsofconnectedvehicles
AT wenwenpan securityriskanalysisapproachforsafetycriticalsystemsofconnectedvehicles
_version_ 1724638534435864576

Similar Items